Validate with SmartID™
SmartID™ validates everyone who needs access to
school facilities and resources, including students, staff, parents, alumni or
casual visitors. It uses single sign-on authentication, so one login provides
access to all authorised services, including over one hundred integrated apps
and portals for Australian education.
SmartID™ validates everyone who needs access to
school facilities and resources, including students, staff, parents, alumni or
casual visitors. It provides seamless access control with powerful,
standards-compliant single sign-on authentication.
SmartID™ checks if users are
trusted, either on campus or remotely, or whether illegal activity is being
attempted. It offers integrated access to over one hundred well-known
management systems and services tailored specifically for the Australian
education sector.
Single Sign-On
- Sign into any service, signed into all services
- Create, update, delete SSO service
- View identity-provider (IdP) details
- View OpenID Connect IDP details
- Authorisation rules (limit who can sign into SSO service)
- Extensive list of real apps & services used by Australian education
see: studentnet.net/services.php
- Free developer sandpit and identity management resources
- International Baccalaureate supported applications
- Chained and federated IdP architectures are fully supported
- IdentiLab support for student digital curriculum coding projects
- Single logout
- SSO Multi-Protocol support: SAML 2.0, OpenID Connect, oAuth, Shibboleth
- School branded sign-on page available across all services
- Sign-on page theme is configurable in Dashboard
- Fully customisable sign on page
- Authentication is independent of network directory (eg AD) operation and availability
- Parent and casual user accounts specifically supported
- Alumni account support
- Granular multi-factor authentication (MFA) management:
- White list network ranges revert to single-factor authentication,
providing localized on-premises network login simplification
- Secure Service MFA
- FIDO2 authentication compliance
Passwordless Authentication
- Standards-based FIDO2/WebAuthn passwordless authentication
- Passkey support
- Facial recognition support (Windows Hello, Apple Mac)
Authentication Settings
- Enable Remember Me
- Users can login with email and username, primary and username, or username only
- Change same-site cookie settings
- Set login identifiers
- Set IP and prefix whitelists
- Force mobile devices to always use Cloudwork®
- Add user agent whitelist and black list
- IP address blocking
- Geoblocking for allowing and disallowing countries
- Trusted URL domains for log-out URL security
- Auth settings for more logout features
Social Media Sign-On
- Sign-on authentication via social media sites
- Popular social media sites supported include: Microsoft, Facebook, Google, Apple ID
- Flexible, granular, OU level enabling of social media sign-on
- IP address filtering for Deny/Allow social media sign-on
- Automatic provisioning of accounts permitted to use social media sign-on
- Increased security through independent account verification
- OU-level granular configurability
Login Protection and Themes
- Brute force attack defense (staggered login)
- Change login themes (update background image, logos)
- Change username/password themes
