Applies to: Starter, Pro, Plus, & Enterprise Plans
With the release of 5.47 (scheduled for deployment on Sunday, May 21,2017), Absorb is introducing the option for System Admins to have departments specify their own identity providers so that Single Sign On (SSO) works via multiple routes on the same portal. This new functionality allows for the ability to specify multiple SSO configurations within the Admin UI, and associate Routes by Department to an SSO configuration. Depending on your organization's needs, this can provide each Department a customized experience when using your own SSO.
- Only System Admins have access to this functionality. Please reach out to your portal's administrator if you believe you should have this role.
- SSO is an additional feature that usually involves an additional fee and technical resources on the client side to develop, and/or configure the solution. Please contact your Client Success Manager for more information.
Setting up Route Level SSO
In order to set up Route Level SSO, there is a new button in the context menu within Portal Settings labelled, Manage SSO Settings.
Once you have clicked the button, you will be brought to the Manage Single Sign-On Settings page. Any existing routes will appear here, as well as the option to Add a new one.
If you elect to add a new Route, you will be provided with a number of fields to fill out.
The table below explains each field, and which fields are mandatory. Be sure to click Save in order to retain your changes, once you are happy with the information you have entered.
|Name||This provides System Admins a way to better identify Routes||no|
|Method||Choose from Absorb, SAML, or LDAPS||no|
|Key||This key is used as part of the authentication process and is configurable in Portal Settings. The SSO key can be chosen by the client (usually randomly generated).||yes|
|Mode||Choose the principle request mode to be used, from either Service Provider Initiated or Identity Provider Initiated.||yes|
|Id Property||A field chosen in Absorb LMS used to uniquely identify the user. Absorb can be configured to use the following as the Id Property:
|Login URL||This URL is used during the authentication process.
This is also the URL Absorb LMS redirects to when the user lands directly on the Portal URL and is not authenticated, if Automatically Redirect (see below) is turned on.
|Logout URL||This is the URL Absorb redirects users to when a user logs out of the Absorb system.||no|
|Automatically Redirect||This optional function, when turned on forces all users who directly land on the Portal URL to be redirected to the Login URL (This request does not send a token parameter). If not turned on users will land on the default Portal URL.||no|
|Assigned Routes||This field allows you to search for, and select, any existing routes to assign||no|