Authentication

Cortex supports three authentication modes:

• None - allow all visitors in as the built-in CSDAdmin user (this user must exist)
• SAML
  • SAML using ADFS
  • SAML using Azure AD (Entra ID)
  • SAML using Okta (Coming soon)
• OpenID Connect using Keycloak

Other authentication services, like Okta, Azure AD, and Shibboleth, are likely to work (with either SAML or OpenID Connect), but have not been tested. If you have questions about a particular authentication scenario, please contact us. If it worked with Cherwell, it likely works with Cortex, but may require additional (undocumented) configuration.

Cortex does not support "Windows Authentication" (NTLM) at this time. The recommended strategy is to use SAML with ADFS or SAML with Azure AD.