Changes

Jump to: navigation, search

Single Sign-On

67 bytes added, 20:26, 13 December 2022
Mandatory Settings
* '''X509Certificate (SAML2 Only)''' - the signing certificate to be provided by the client. The formatting of this should be the certificate value without the "begin certificate" and "end certificate" header and footer lines. Also, depending on how the client-side system sends this value within the SAML assertion the certificate value will typically be formatted to just a single line but could also be multiple lines and so must be entered into SmartSimple in the same format.
* '''Timestamp Time Zone''' - used to read the incoming SSO message timestamp from Identity Provider configured time zone.  Default value is "--UTC/GMT--". Settings will need to be adjusted when the error "SAML response expired" is found in the log file during debug mode.
<!--Ticket#Ticket#111554 - Single Sign On - timestamp challenge-->
* '''Third-Party Identity Provider'''- specify what SSO authentication method is used  (Identity-Provider initiated  or  Service Provider-initiated)
** '''Endpoint''' - specify the redirect IdP-initiated or SP-Initiated endpoint.  This redirect will be rendered in the [[Login Page]].
Smartstaff
1,385
edits

Navigation menu