Authentication

Cortex supports three authentication modes:

• None - allow all visitors in as the built-in CSDAdmin user (this user must exist)
• SAML
  • SAML using ADFS
  • SAML using Azure AD (Entra ID)
  • SAML using Okta
  • SAML using Google Workspace
• OpenID Connect using Keycloak

Other authentication services, like Okta, Azure AD, and Shibboleth, are likely to work (with either SAML or OpenID Connect), but have not been tested. If you have questions about a particular authentication scenario, please contact us. If it worked with Cherwell, it likely works with Cortex, but may require additional (undocumented) configuration.

Cortex supports Windows Authentication via IIS, but it is strongly recommended to use SAML with ADFS or SAML with Azure AD instead.