Introduction

Milestone’s XProtect VMS products are designed for large-scale, high-security installations and are often deployed in places where user management with Microsoft on-prem Active Directory or the XProtect VMS’ built-in basic users don’t meet the customer requirements for user management and authentication.

To address these customer requirements, the XProtect VMS products support an external Identity Provider (IDP) via the OpenID Connect (OIDC) and the OAuth2 protocols and standards.

When integrating an external IDP with the XProtect VMS, most of the user management, including user provisioning and roles assignment, can be managed directly from the external IDP. This allows customers to have a central place to manage their users throughout their organization, regardless of what applications the users interact with or their choice of platform or operating system, for example, Microsoft Windows, Linux, Apple’s macOS, Smart Phones or a browser-based interface.