Route Level Single Sign On

Follow

Applies to: Starter, Pro, Plus, & Enterprise Plans

With the release of 5.47 (scheduled for deployment on Sunday, May 21,2017), Absorb is introducing the option for System Admins to have departments specify their own identity providers so that Single Sign On (SSO) works via multiple routes on the same portal. This new functionality allows for the ability to specify multiple SSO configurations within the Admin UI, and associate Routes by Department to an SSO configuration. Depending on your organization's needs, this can provide each Department a customized experience when using your own SSO.

Please Note:

  • Only System Admins have access to this functionality. Please reach out to your portal's administrator if you believe you should have this role.
  • SSO is an additional feature that usually involves an additional fee and technical resources on the client side to develop, and/or configure the solution. Please contact your Client Success Manager for more information.

Setting up Route Level SSO

In order to set up Route Level SSO, there is a new button in the context menu within Portal Settings labelled, Manage SSO Settings. 

manage-sso.png

Once you have clicked the button, you will be brought to the Manage Single Sign-On Settings page. Any existing routes will appear here, as well as the option to Add a new one. 

manage-sso-settings.png

If you elect to add a new Route, you will be provided with a number of fields to fill out. 

add-sso-route.png

The table below explains each field, and which fields are mandatory. Be sure to click Save in order to retain your changes, once you are happy with the information you have entered.

Field  Description Mandatory
Name This provides System Admins a way to better identify Routes no
Method Choose from Absorb, SAML, or LDAPS no
Key This key is used as part of the authentication process and is configurable in Portal Settings. The SSO key can be chosen by the client (usually randomly generated). yes
Mode Choose the principle request mode to be used, from either Service Provider Initiated or Identity Provider Initiated yes
Id Property A field chosen in Absorb LMS used to uniquely identify the user. Absorb can be configured to use the following as the Id Property:
  • UserId (Absorb)
  • Username
  • Email Address
  • External Id
  • Employee Number
yes
Login URL This URL is used during the authentication process. 

This is also the URL Absorb LMS redirects to when the user lands directly on the Portal URL and is not authenticated, if Automatically Redirect (see below) is turned on.
yes
Logout URL This is the URL Absorb redirects users to when a user logs out of the Absorb system. no
Automatically Redirect This optional function, when turned on forces all users who directly land on the Portal URL to be redirected to the Login URL (This request does not send a token parameter). If not turned on users will land on the default Portal URL. no 
Assigned Routes This field allows you to search for, and select, any existing routes to assign no 

 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.