1. Absorb Help Center
  2. News
  3. Release Notes

March 2026 Standalone Release: SSO Enhancements

Updated
2025 Release Notes and KB Article top banner
Standalone Release

New and updated SSO capabilities are rolling out across regions.

Australia (AU):Tuesday, March 24, 2026, 7:00 AM
European Union (EU):Wednesday, March 25, 2026, 1:00 PM
Canada (CA):Thursday, March 26, 2026, 6:00 PM
United States (US):Thursday, March 26, 2026, 6:00 PM
China (CN):Friday, March 27, 2026, 7:00 AM
A Note: Deployment timelines are as per the release timelines above. New features may take up to one week to become available in your environment after deployment.

 

This release introduces updates to Single Sign-On configuration in Absorb, including a redesigned setup experience for SAML and expanded capabilities for OpenID Connect (OIDC).

These updates pertain to version 5.128.0 of the Absorb LMS.

 

Updated Features

The following updates improve how System Admins configure and maintain SSO connections in Absorb.

For more information, review: 

 

Centralized SSO Configuration Experience

SSO settings are now accessed from Client Settings through the SSO card, replacing the older single-page setup experience in Portal Settings. The new wizard-style flow guides admins through configuration in clearer, step-by-step sections.

 

Certificate Upload for SSO Configuration

SAML and OpenID Connect setup now supports certificate file upload during configuration. Absorb can extract and populate the key automatically, reducing manual copy and paste and helping lower the risk of key formatting errors during setup or updates.

For OpenID Connect, clients may upload a certificate if the dynamic key functionality is not enabled.

 

Enhanced OpenID Connect Configuration

OIDC now supports RS256 with dynamic key retrieval, allowing Absorb to discover signing keys from the identity provider automatically. Existing HS256 and static RS256 configurations continue to work, but the new dynamic key option reduces manual key management for new implementations.

 

OIDC User Provisioning

OIDC now supports optional user provisioning when RS256 and Use Dynamic Keys are enabled. This allows Absorb to create users during authentication when they do not already exist in the LMS, helping streamline onboarding for external or newly added users.

 

OIDC Configuration Notes

For OIDC provisioning, the unique identifier is the User’s email address. Additional scopes are required when provisioning is enabled, and some current limitations remain, including no support for manager experience or admin role assignment through OIDC.

 

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.

Related articles

Related articles