====Additional Settings====
To enable adding new users/organizations, the following '''Options''' should be enabled:
* '''Create New User on No Match''' - create new user when no matching is found and will allow login for new user upon successful authentication
* '''Create New Organization on No Match''' - create new parent organization when no matching organization is found
These settings are used to add new users and/or new organizations.
* '''Default New User Role''' - assigned system role for new users
* '''Default New User Status''' - assigned user's status for new users
Other settings:
* '''Use UID as Unique Identifier''' - use node name UID as unique identifier for users. Default is NameID.
* '''Bypass Two Factor Authentication''' - Bypass Two Factor Authentication when logged in with SSO
* '''Enable Debug Mode''' - Ignore the SSO time stamp and output error messages in the [[Configuration_Error_Log|Congifuration Error Log]]
* '''IP Mask''' -
* '''Logout Redirect URL''' - redirect url when SSO users logout
<!--Ticket#52854 - SSO logout assertion SLO-->
* '''Enable Logout Assertion''' - will send a logout assertion to the Identity Provider to log out of that session
:*: Additional settings::*: '''Assertion Target URL''' - target site url:*: '''Assertion Private Key''' - private key to establish connection with the target site
===Identity Provider Configuration - Client-Side System===