Single sign-on is an authentication scheme that allows a user to log in with a single ID and password to any of several related, yet independent, software systems. It is often accomplished by using the Lightweight Directory Access Protocol and stored LDAP databases on servers.
In this site, the file destination had been encrypted by using cloudlfare access with integration on Azure Active Directory. An intergration with Azure AD on the group 19990705.onmicrosoft.com had been setup to the system. Another Azure Account provided by UTM had been integrated with cloudflare access ,so that with an @live.utm.my account it can been log to the SSO system and have access to the file destination.
{
"name": "Chun Keat Ong",
"email": "[email protected]",
"amr": [
"pwd"
],
"groups": [
{
"id": "a321626a-a9e9-411d-b0b2-a50702e6",
"name": "Company Administrator"
},
{
"id": "7ec9048d-4dda-44a8-b379-44805d2a",
"name": "19990705"
},
{
"id": "1e316aec-7753-4411-bc6a-48038aa",
"name": "All Company"
}
]
}
Another login method is by Email, the email ending by @m.chunkeat.me and @graduate.utm.my had been added to the system whitelist, any login attmept by using any of the lsited email will receive a login code to gain access to the site.
