Managing users and user access relies on both authentication and provisioning.
Verint Identity and authentication
With Verint Identity, either an Identity Provider (IdP) or the Verint Identity Service authenticates users.
-
Users authenticated by an IdP (such as Okta or Microsoft Entra ID) are known as federated users.
An IdP is a service that stores and manages digital identities, provisions user accounts, and authenticates users for organizations with which it has a trust relationship. When your IdP is configured to exchange authentication information with the Verint Identity Service, the IdP has a trust relationship with Verint. The Identity Service passes authentication requests to the IdP to verify user identities.
-
If your company or organization does not use an IdP for user authentication, the Identity Service authenticates your Verint users. This type of authentication is known as non-federated authentication.
Verint Identity and provisioning
Provisioning governs the creation, management, and deactivation of user accounts and their associated access to Verint applications and services. All users who need to access identity-enabled Verint products and services are provisioned in the Verint Identity Management portal.
-
If your IdP and Verint Identity are configured to use the System for Cross-domain Identity Management (SCIM) standard and your IdP provides user provisioning details to Identity Management, user profiles are created automatically. The Verint Identity Service acts as a SCIM gateway, synchronizing user data from the IdP to Identity Management, and any changes to user details are reflected in Identity Management automatically.
-
If your IdP authenticates users but does not share provisioning information with Verint, you manually create user profiles in the Identity Management portal to match the details held by your IdP.
By replicating the details of a federated user in Identity Management, an administrator can activate, deactivate, or delete the user to control their access to Verint Identity-enabled products.
Identity Management administrators can import the details for multiple users from a Comma-Separated Values (CSV) file or create the profiles individually.
-
If your company or organization does not federate Verint users with an IdP, an Identity Management administrator creates user profiles in the Identity Management portal.
Verint Identity also supports an option called WFE Sync. With WFE Sync, existing Verint cloud Workforce Engagement (WFE) customers can continue to manage users through WFE until they can transition to automatic provisioning (SCIM). WFE Sync synchronizes users from WFE to the Identity Service, the Identity Service creates user profiles in Identity Management, but all user administration is through WFE. WFE Sync is not supported for on-premises customers.