Introducing Trustdesk
Trustdesk is cidaas's new central administration hub, replacing the previous Admin Dashboard. It ships with cidaas platform version 4.x and is designed to give administrators a cleaner, more structured workspace — consolidating configuration that was previously spread across multiple areas into logical, purpose-built sections.
With Trustdesk, administrators can manage the full lifecycle of identity and access configuration in one place: from defining how users register and authenticate, to controlling what they can access, how they are grouped, and how the platform communicates with them. Configurations defined in Trustdesk are designed to be reusable across applications, reducing repetitive setup and keeping settings consistent at scale.
Trustdesk requires cidaas 4.x. The legacy Admin Dashboard (/admin-ui) remains available during the transition period; new capabilities described in this guide are available in Trustdesk only.
Functional personas
Trustdesk is designed around eight functional personas — role profiles that reflect how different teams interact with the platform. Each persona maps to specific Trustdesk sections and an intended access scope. Assign admin roles in the CIDAAS_ADMINS group to match the persona's responsibilities rather than granting full access by default.
Persona overview
| Persona | Primary focus | Trustdesk sections | Access level |
|---|---|---|---|
| Administrator | IT infrastructure and platform oversight | All sections | Full administrative |
| App Developer | Application integration and OAuth/OIDC setup | Integrations, Permission Setup → Scopes, Providers, Branding | Development and configuration |
| Security Officer | Security monitoring, policies, and incident response | SecureOps, Reports | Security modules |
| Support Engineer | User troubleshooting and account recovery | Users, User Setup, Reports | Support and user data |
| Auditor | Compliance review and activity evidence | Reports, Access Control | Read-only / reporting |
| Communication Administrator | Notification templates and channels | Communication | Communication modules |
| Brand Manager | Visual identity and hosted page experience | Branding | Brand and hosted pages |
| Compliance Officer | Regulatory compliance and consent management | Consents, Reports, SecureOps | Compliance and policy |
Administrator
Profile: Seasoned IT professional responsible for platform reliability, user access, and overall system configuration.
Goals
- Ensure high availability and performance of the identity platform
- Implement robust security measures and disaster recovery plans
- Manage user access and maintain overall system security
Trustdesk usage: Daily monitoring and management across all sections. Relies on advanced reporting and analytics to track system health, user activity, and operational trends.
Functional access
- Full administrative access to all Trustdesk modules
- User, role, and permission management (Users, User Setup, Permission Setup)
- System configuration and policy control across all sections
- Audit logs, reporting, and analytics (Reports)
Key challenge: Balancing system stability with frequent updates and new feature deployments while keeping the environment secure and reliable.
App Developer
Profile: Software developer focused on building scalable applications and integrating them with cidaas via APIs and SDKs.
Goals
- Deliver integrations that meet application requirements
- Create seamless authentication and registration experiences
- Optimize application performance and security
Trustdesk usage: Works primarily in development and testing environments. Uses Integrations → Applications, Integrations → Endpoints, and API/SDK tooling for registration and authentication setup.
Functional access
- Integrations → Applications — application registration and OAuth/OIDC configuration
- Integrations → Endpoints — OIDC/OAuth2 discovery and endpoint reference
- Integrations → Webhooks — event-driven integration setup
- Permission Setup → Scopes — client permission configuration
- Providers → Identity Providers — login provider assignment per application
- Branding → Hosted Pages Groups — hosted page group references for apps
Key challenge: Meeting tight deadlines while maintaining code quality, security, and long-term maintainability of integrations.
Security Officer
Profile: Security professional focused on cybersecurity, risk management, and protecting organizational data and assets.
Goals
- Maintain a secure identity environment
- Identify and mitigate security risks
- Ensure compliance with security standards and regulations
Trustdesk usage: Security monitoring and incident response via SecureOps and Reports. Relies on security alerts, audit logs, and policy configuration tools.
Functional access
- SecureOps → Security Dashboard — configuration issues and suspicious activity
- SecureOps → Verification Methods, Verification Options, Suggest Verification
- SecureOps → Password Policies, Security Keys, FDS Settings
- Reports — failed logins, device statistics, login locations, change logs
Key challenge: Staying ahead of evolving threats while ensuring security controls do not create unnecessary friction for users and developers.
Support Engineer
Profile: Customer-focused engineer who troubleshoots user issues with patience and clear communication.
Goals
- Provide timely and effective support to end users
- Resolve technical issues and minimize downtime
- Improve documentation and self-service resources
Trustdesk usage: Troubleshooting and resolving user issues via Users, User Setup, and diagnostic Reports.
Functional access
- Users — user search, account lookup, and status review
- User Setup → User Setup — invite, create, and manage user accounts
- Reports — user activity, communication reports, failed logins
- Read access to Integrations → Applications for client-specific troubleshooting
Key challenge: Resolving complex issues under pressure during degraded systems while managing user expectations.
Auditor
Profile: Detail-oriented auditor focused on compliance, accountability, and regulatory evidence.
Goals
- Conduct thorough audits of system activity and data
- Ensure compliance with internal policies and external regulations
- Identify potential risks and compliance gaps
Trustdesk usage: Auditing and compliance monitoring via Reports and read-only visibility into configuration and activity.
Functional access
- Reports — user statistics, change logs, webhook reports, consent status, login locations
- Reports → Change Logs — configuration change history
- Access Control — resource and device access review (read-only)
- Data export and analytics for external analysis
Key challenge: Identifying compliance issues in large volumes of data and ensuring audit findings are addressed without being overwhelmed by noise.
Communication Administrator
Profile: Communication professional managing internal and external messaging channels and content.
Goals
- Manage notification channels and message content
- Maintain consistency across communication templates
- Ensure information is shared effectively and on time
Trustdesk usage: Manages Communication modules for template configuration and channel setup.
Functional access
- Communication → Template Groups — email, SMS, and notification templates
- Communication → Template Types — template type definitions and attributes
- Reports — user communication reports and delivery monitoring
Key challenge: Balancing frequent communication needs with the risk of information overload while keeping messages clear and consistent.
Brand Manager
Profile: Brand strategist focused on visual identity, hosted page experience, and consistent customer-facing design.
Goals
- Ensure brand consistency across all user-facing pages
- Increase brand awareness and foster customer loyalty
- Develop brand strategies that drive engagement
Trustdesk usage: Manages Branding assets and monitors how hosted pages represent the brand across login and registration flows.
Functional access
- Branding → Hosted Pages Groups — page group configuration and URLs
- Branding → Theming — color, typography, and visual theme settings
- Branding → Hosted Pages Layout — layout structure for login and registration pages
Key challenge: Maintaining brand consistency in a rapidly changing environment across multiple channels and teams.
Compliance Officer
Profile: Compliance professional ensuring the organization operates within legal and ethical boundaries.
Goals
- Ensure compliance with laws, regulations, and internal policies
- Identify and mitigate compliance risks
- Implement ethical policies and controls across the platform
Trustdesk usage: Compliance monitoring and reporting via Consents, Reports, and policy visibility in SecureOps.
Functional access
- Consents → Consents — consent definitions and legal bases
- Consents → Consent Groups — consent group configuration per application
- Reports — consent status, change logs, event retention
- SecureOps → Password Policies — policy review (read access)
Key challenge: Keeping up with changing regulations and integrating compliance measures into organizational processes without creating undue burden on teams.
Agentic Chatbot
Trustdesk includes a built-in Agentic Chatbot — an AI assistant embedded in the administration workspace that helps administrators navigate configuration, understand dependencies, and complete multi-step setup tasks.
Capabilities
- Guided navigation — locate settings across Trustdesk sections without manually browsing the menu structure.
- Configuration guidance — explain how Trustdesk settings relate to each other (for example, how an application references hosted page groups, scopes, or verification methods).
- Operational troubleshooting — help diagnose common setup issues such as redirect URI mismatches, missing scopes, or webhook delivery failures.
- Context-aware answers — responses are scoped to the administrator's current Trustdesk context and instance configuration.
Architecture
The chatbot runs inside Trustdesk and communicates with an agent runtime that combines platform documentation with live instance data retrieved through authenticated admin APIs. It does not bypass cidaas security controls — all actions are subject to the same authorization checks as the Trustdesk UI.
Integration points
| Integration | Purpose |
|---|---|
| Trustdesk UI shell | Chat entry point in the Trustdesk header; maintains session context across sections |
| Admin OAuth session | Authenticates the administrator; chatbot inherits the active Trustdesk login |
| cidaas Admin APIs | Read-only access to instance configuration for context-aware responses |
| Platform knowledge base | Product documentation and setup guidance for Trustdesk features |
Permissions
The Agentic Chatbot operates under the same role and permission model as the logged-in administrator:
- It can only read or suggest changes for settings the administrator is authorized to access.
- It cannot elevate privileges or perform actions outside the administrator's assigned roles.
- Sensitive operations (for example, deleting users or rotating client secrets) require explicit confirmation in the Trustdesk UI.
Supported use cases
| Use case | Example prompt |
|---|---|
| Onboarding | "What do I need to configure before creating my first application?" |
| Navigation | "Where do I set up SAML identity providers?" |
| Dependencies | "Which settings does my application depend on for login?" |
| Troubleshooting | "Why might webhook events not be delivered?" |
| Best practices | "What password policy settings do you recommend for a B2B portal?" |
Responses from the Agentic Chatbot are AI-generated and may be incomplete or inaccurate. Verify critical configuration changes before applying them in production.
What you can configure — and where to find it
The tables below map Admin Dashboard locations to their Trustdesk equivalents. Sections with complex external dependencies include additional detail after the mapping table.
Users & User Management
Manage existing user accounts, create and invite new users, and configure the structure of your user data — including registration fields and user schedules.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| User Search & Setup → User Search | Users |
| Users → Invite User | User Setup → User Setup |
| Users → Create User | User Setup → User Setup |
| User Search & Setup → SCIM Mapping | Providers → SCIM Mapping |
| Settings → Registration Page Fields | User Setup → Field Setup |
| Settings → User-Schedules | User Setup → Schedule Setup |
Apps & Integrations
Connect and manage your applications, configure webhooks for event-driven workflows, and manage API endpoints.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Apps → App Settings | Integrations → Applications |
| Settings → Webhook | Integrations → Webhooks |
| Endpoints | Integrations → Endpoints |
External dependencies
| Dependency | Purpose | Configure in Trustdesk | Operational notes |
|---|---|---|---|
| User Setup (Field Setup) | Registration fields, allowed/required user attributes per app | User Setup → Field Setup | Applications declare which registration fields are allowed or required at login/registration; field keys and scopes must exist before creating the application |
| Hosted Page Layout | Login and registration UI layout | Branding → Hosted Pages Layout, Branding → Hosted Pages Groups | Each application references a hosted page group; layout and group must be configured before the application can serve login/registration pages |
| Identity providers | Social, SAML, OIDC, LDAP login options | Providers → Identity Providers | Providers must be configured here and then enabled per application under Integrations → Applications |
Operational considerations
- Create shared configuration (user fields, hosted pages, providers) before provisioning applications under Integrations → Applications.
- Use the Integrations → Endpoints view to verify OIDC/OAuth2 discovery URLs when wiring SDKs or third-party clients.
- Monitor webhook delivery in Reports if event-driven integrations are business-critical.
Providers
Set up identity providers for social and enterprise login (e.g. OIDC, SAML), and configure SCIM attribute mapping for directory synchronization.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Settings → Login Providers | Providers → Identity Providers |
| User Search & Setup → SCIM Mapping | Providers → SCIM Mapping |
Permission Setup
Define and manage roles, scopes, scope groups, user groups, and group types. The central place for structuring authorization across your applications.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Apps → Scope Management | Permission Setup → Scopes |
| Apps → Scope Groups | Permission Setup → Scope Groups |
| Manage User Groups → Role Master | Permission Setup → Roles |
| Manage User Groups → Manage User Groups | Permission Setup → User Groups |
| Manage User Groups → User Group Category | Permission Setup → User Group Types |
| — | ✨ Permission Setup → User Group Verification Filter (new) |
| — | ✨ Permission Setup → Group Selection (new) |
SecureOps
Configure your security posture: manage verification methods and MFA, set password policies, define security keys, and monitor the security dashboard.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Security Dashboard | SecureOps → Security Dashboard |
| Multifactor Settings | SecureOps → Verification Methods |
| Settings → Password Policy | SecureOps → Password Policies |
| Apps → Security Keys | SecureOps → Security Keys |
| Security config → Settings | SecureOps → FDS Settings |
| — | ✨ SecureOps → Suggest Verification (new) |
| — | ✨ SecureOps → Verification Options (new) |
Branding
Control the look and feel of your user-facing pages through hosted page groups, themes, layouts, and translations.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Hosted Pages | Branding → Hosted Pages Groups |
| — | ✨ Branding → Theming (new) |
| — | ✨ Branding → Hosted Pages Layout (new) |
Communication
Define and manage templates and template types used for emails and notifications across all user flows.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Templates → Templates | Communication → Template Groups |
| Templates → Template Types | Communication → Template Types |
Consents
Create and manage consent definitions and consent groups for GDPR-compliant user flows.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Settings → Consent Management | Consents → Consents |
| — | Consents → Consent Groups |
Access Control
Configure resource-based access control including locations, resource groups, and resources. Manage devices and review access reports.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Access Control → Configuration | Access Control → Configuration |
| Access Control → Locations | Access Control → Locations |
| Access Control → Resource Group | Access Control → Resource Group |
| Access Control → Resources | Access Control → Resources |
Reports
Access operational reports covering user activity, webhook events, failed logins, login locations, device statistics, quota usage, consent status, and change logs.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Reports → User Communication Report | Reports |
| Reports → Webhook Report | Reports |
| Reports → Failed Login Report | Reports |
| Reports → Change Logs | Reports → Change Logs |
| Reports → Quota Management | Reports |
| Reports → User Statistics | Reports |
| Reports → Login Location | Reports |
| — | ✨ Reports → Event Retention (new) |
| — | ✨ Reports → Statistics on Login Providers (new) |
| — | ✨ Reports → Device Statistics (new) |
| — | ✨ Reports → App Locations & Devices (new) |
Passes & Payment
Manage pass templates, layouts, and credential-based access scenarios. Configure payment profiles, providers, and review transaction logs.
| Previously in Admin Dashboard | Now in Trustdesk |
|---|---|
| Pass Management → Pass Layouts | Passes → Pass Layouts |
| Pass Management → Pass Search | Passes → Passes |
| Payment → Payment Profile | Payment → Payment Profile |
| Payment → Payment Provider | Payment → Payment Provider |
| Payment → Transaction Log | Payment → Transaction Log |
Related documentation
- App Management — OAuth2/OIDC application configuration
- Webhook Management — event-driven integration patterns
- Permission Management — scopes, groups, and roles, authzen