¶ Enterprise Identity Source
For information about the GenAuth user pool version that supports the "Enterprise Identity Source" feature benefit, please check the Official Website "Pricing" page (opens new window). If your version does not support this benefit and you want to try it, you can activate the trial period. For an introduction to the trial period and how to activate it, please check Trial Period.
Enterprise Identity Source Login refers to the process of users using the enterprise's identity authentication information to authenticate and log in to internal company applications or third-party applications. In the GenAuth console, enterprise identity sources include two categories: office applications (such as Lark, WeChat for Enterprise, DingTalk) and standard protocol applications (such as OIDC, SAML, CAS and other standard protocols). You can configure the enterprise identity source connection to use a third-party identity source to log in to the GenAuth application and [import organizations and users from third-party identity sources](/guides/org/create-or-import-org/#Import organizations).
¶ Enterprise identity source login list
The following is a complete list of enterprise logins currently supported by the platform and related usage documents:
| Enterprise login method | Usage scenario | Usage document |
|---|---|---|
| Enterprise WeChat self-built application scan code | PC website/Enterprise WeChat browser | Usage document |
| Enterprise WeChat self-built application scan code (development mode) | PC website | Usage document |
| Enterprise WeChat service provider application scan code | PC website | Usage document |
| Enterprise WeChat mobile terminal | Mobile APP | Use Documentation |
| DingTalk H5 Micro Application (Enterprise Internal Development) | PC Website | Use Documentation |
| DingTalk Mobile Terminal | Mobile APP | Use Documentation |
| Feishu Enterprise Self-built Application | PC Website/Feishu Browser/Mobile Terminal/Mobile Terminal | Use Documentation |
| Feishu App Store Application | PC Website/Feishu Browser/Mobile Terminal/Mobile Terminal | Use documentation |
| Windows Active Directory | PC website | Use documentation |
| Azure Active Directory | PC website | Use documentation |
| OIDC | PC website | Use documentation |
| OAuth 2.0 | PC website | Use documentation |
| LDAP | PC website | Use Documentation |
| SAML | PC Website | Use Documentation |
| CAS | PC Website | Use Documentation |
| Welink | PC Website | Use Documentation |
¶ Enterprise login association method
Use the "Account association of identity source connection" function to allow your users to log in directly to existing accounts when logging in using the enterprise identity source you configured.
When "Account Identity Association" is not enabled, a new user is created in the user pool by default when a user logs in through an identity source for the first time. After enabling "Account Identity Association", you can select the "Identity Source Account Association Method" for the user, allowing the user to directly bind and log in to an existing account through "Field Matching" or "Query Binding".
The following are the ways that the enterprise identity sources currently supported by the platform support account association:
| Social login method | Usage scenario | Query binding | Binding method | Field matching | Matching rules |
|---|---|---|---|---|---|
| Enterprise WeChat self-built application scan code | PC website | -- | -- | ✅ | Mobile phone, email |
| Enterprise WeChat self-built application scan code (developed on behalf of others) | PC website | -- | -- | ✅ | Mobile phone, email |
| Enterprise WeChat service provider scan code | PC website | -- | -- | -- | -- |
| Enterprise WeChat mobile terminal | Mobile APP | -- | -- | ✅ | Mobile phone, email |
| Enterprise WeChat self-built application scan code | Enterprise WeChat browser | -- | -- | ✅ | Mobile phone, email |
| DingTalk H5 micro application (enterprise internal development) | PC website | -- | -- | ✅ | Mobile phone, email |
| Feishu enterprise self-built application | PC website/Feishu browser/mobile terminal | -- | -- | ✅ | Mobile phone, email |
| Feishu enterprise self-built application | Mobile APP | -- | -- | ✅ | Mobile phone, email |
| Feishu App Store application | PC website/Feishu browser/mobile terminal | -- | -- | ✅ | Mobile phone, email |
| Feishu App Store application | Mobile APP | -- | -- | ✅ | Mobile phone, email |
| Windows Active Directory | PC website | -- | -- | ✅ | Mobile phone number, email |
| Azure Active Directory | PC website | -- | -- | ✅ | Mobile phone number, email |
| OIDC | PC website | -- | -- | ✅ | Mobile phone number, email |
| OAuth 2.0 | PC website | -- | -- | ✅ | Mobile phone number, email, user name |
| LDAP | PC website | -- | -- | ✅ | Mobile phone number, email |
| SAML | PC website | -- | -- | ✅ | Mobile phone number, email |
| CAS | PC website | -- | -- | ✅ | Mobile number, email |
| Welink | PC website | -- | -- | ✅ | |
| Zhiyuan OA | PC website | -- | -- | ✅ | Username |