Administrators
Administrators can configure, monitor and manage the Axon Ivy Engine. At least one administrator must be configured in ivy.yaml.
1# yaml-language-server: $schema=https://json-schema.axonivy.com/ivy/13.2.7/ivy.json
2# Engine Administrators
3# [engineDir]/configuration/ivy.yaml
4Administrators:
5 devop:
6 Password: "${hash:admin}"
7 Email: devop@localhost.com
8 admin:
9 Password: "${hash:mySecret}"
10 Email: info@localhost.com
11 FullName: "James David"
It is highly recommended to hash passwords of administrators by enclosing the
password in cleartext with "${hash: and }" like
"${hash:1234}" for password 1234. Hashed passwords
can not be decrypted anymore.
The Axon Ivy Engine will automatically hash and replace the password in file,
when the configuration will be loaded
Identity Provider
You can configure an external identity provider for administrators. This can be
done the same way as for workflow users.
You only need to define system for SecuritySytems in
ivy.yaml.
# Example configuration for an external identity provider
SecuritySystems:
system:
IdentityProvider:
Name: keycloak
SSO
To configure Single Sign-on for administrators, you need to enable SSO on the system
security system in ivy.yaml. Read more about Single Sign-on.
SecuritySystems:
system:
SSO:
Enabled: true