Smartstaff
1,385
edits
Changes
→SmartSimple SSO configuration as the Service Provider
1. Navigate to '''Global Settings''' → '''Integrations''' tab → '''Single Sign-On''' section
2. Click on the “'''+'''” icon to create a new SSO configuration on the instance
3. Fill out the mandatory fields:
: '''Signing Certificate (X.509)''': cut and paste the x509 certificate after configuration of the client's Identity Provider
: '''Timestamp Time Zone''': '''''--UTC/GMT--''''' (default from the dropdown)
: '''MES Group Identifier''': '''''SSOProd''''' (free open text field)
: '''MES Environment Identifier''': '''''alias.smartsimple.com''''' (client's url production instance)
: '''Method''': '''''Identity Provider-initiated''''' (default setting)
: '''Identity Provider Service Endpoint''': this is the url login redirect.
:: For Azure, the value in '''''User Access URL ''''' (Found under '''''Properties'''''):: For OKTA, the value in '''''Embed Link ''''' (Found under '''''General ''''' tab in the '''''App Embed Link ''''' Section):: For ADFS, the redirect is '''''https://adfs.yourlocaldomain.com/adfs/ls/idpinitiatedsignon.aspx?loginToRp=https://alias.smartsimple.com/'''''
: '''Unique Identifier FIeld (UID)''': from the dropdown, select '''''*E-Mail''''' (Default value but it can also be the Employee ID or any unique identifier in the user profile)
: '''Bypass Multi-Factor Authentication (MFA)''': enabled
2. From the '''Primary''' tab, click on the pencil icon for the first item on the list view - the default Login Page
3. From the '''General''' tab, go to the '''Single Sign-On''' section and complete the two fields:
: '''MES Group Identifier''': from the dropdown, select '''''SSOProd'''''
: '''Link Label''': '''''Employee Login''''' (free open text field)
4. Click Save
