Q: Does the vendor or vendor systems require access to our internal network? How does the vendor make a connection to our data center? Are these connections from one location or multiple locations?
No. Xoxoday does not require access to a client’s internal network or data center. The platform integrates with client systems through secure API connections or by ingesting flat files/CSV shared by the client. All integrations are managed from centralized cloud environments and comply with global security and privacy standards, including SOC 2, ISO 27001, and GDPR.
Q: Does the platform support integration with other authentication and authorization systems?
Yes, Xoxoday integrates with enterprise-grade authentication and authorization systems for secure identity management. Supported systems include:
Active Directory (AD) – via SAML 2.0 or Azure AD
LDAP directories – OpenLDAP, Oracle Directory Services (via SAML/OIDC bridge)
Microsoft Azure AD – SAML 2.0 or OAuth 2.0
Google Workspace – SAML-based SSO
Okta, OneLogin, Auth0 – SAML 2.0/OIDC
Custom Identity Providers – SAML 2.0 or OpenID Connect
Kerberos – via SAML bridge
Comprehensive documentation and support are provided for seamless integration.
Q: Can Xoxoday maintain detailed audit logs for compliance reporting?
Xoxoday supports comprehensive audit logging of all access and maintenance activities. The platform maintains audit trails and historical data, providing a record of activities. Xoxoday generates security events and audit logs, offering an audit log report that logs and traces every activity performed in the system.