Identity and Access Management (IAM) Support
Live Platform now features a centralized Identity and Access Management (IAM) system, providing a secure and flexible way to manage user access. This support introduces multi-scope access, allowing a single user account with a single set of credentials and identified by a unique email address can manage multiple Live Platform entities with a single login.
| ● | Make sure that the organization's firewall allows the below URLs. Service Providers and Channels should inform their end customers. |
| ✔ | https://iam.audiocodesaas.com |
| ✔ | https://acservicesiam.b2clogin.com/tfp/acservicesiam.onmicrosoft.com |
| ✔ | https://acservicesiamfiles.blob.core.windows.net |
| ● | For customers with their own White-label App registration, additional configuration is required, contact AudioCodes Services Portal. |
Key Enhancements:
| ■ | Unified User Identity: Users no longer need separate accounts for different Live Platform entities or scopes (Service Providers, Channels, or Customers). A single user, identified by an email address can now be associated with multiple scopes. Previously, a user accessing Live Platform was limited to a single Service Provider. A user that was an administrator for multiple Service Providers had to use separate Live Platform user accounts (different email addresses) for each Service Provider. |
| ■ | Granular Per-Scope Roles: The same user can be assigned different permission levels (roles) across different Live Platform entities. For example, a user can act as an administrator for one entity and a viewer for another. |
| ■ | Seamless Scope Switching: Users associated with multiple scopes are prompted when signing in to Live Platform to choose the scope they want to work in for that session. Once logged in, users can easily switch between their associated Live Platform accounts without needing to log out and then back in again. |
| ■ | External IDP & SSO Support: In addition to local Live Platform users, the IAM system supports Microsoft 365 users. Single Sign-On (SSO) allows users to authenticate via their corporate identity provider to access all authorized Live Platform services. |
| ■ | Multi-Factor Authentication (MFA): Users can be enabled in the IAM system for multi-factor authentication (MFA), adding an extra layer of security. MFA requires a verification code from an authenticator app or email during sign-in. |
| ■ | Streamlined Onboarding: New users receive automated email invitations to verify their identity and register their accounts, simplifying the administrative setup. |