Salesforce

Set up Manage Single Sign-on (SSO)

Printable View
« Go Back
Information
Set up Manage Single Sign-on (SSO)
ka03o000001DtVRAA0
Article Details

Single Sign-on (SSO) authentication makes it easy for end-users to access Enlighted Manage in the Cloud (EMC) or third-party apps in one place. Auth0  centralizes user authentication and authorization for Enlighted Manage in the Cloud (EMC).  Please contact or submit a ticket to Enlighted Support to enable SSO with Microsoft Azure AD and register and configure the EMC application with Auth0.

This article describes how to authorize an Identity Provider for SSO authentication in Manage. You must be logged in as an administrator to perform the below-mentioned procedure.

Getting Started

As an Administrator, you can easily set up and manage SSO access and user permission for all user accounts in the organization. The Add Users for Single Sign-on explains how to quickly assign which users should have one-click access to Manage that you have authorized for SSO access. 

Authorize Identity Provider  

Choosing an Identity Provider determines how you want your users to log in.  Users must be signed in as an administrator to set up SSO. Use the following procedure to authorize and connect to an identity provider.

  1. In Manage, navigate to Administration > Identity Provider Settings.
  2. Choose your Authentication Type from the dropdown list. Manage provides three types of authentication connections that you can configure. However, only Auth0 is supported in this release.
      • Auth0 – A central identity provider that handles Auth0 authentication using tokens.
      • LDAP – Lightweight Directory Access Protocol (LDAP) provides a centralized location for user identity, so the application requests an authentication to the LDAP server. 
      • Database – Instead of using external identity providers, you can use a database connection to authenticate users with an email or username and a password.

    SSO_Login_Settings.png

    The Server Settings tab appears.

    1. Click on the Server Settings tab, and enter the server details.
        • Domain Name – Name of your organization, for example, xyz.com
        • Client ID – Client ID of the application allowed to use the connection. You can find this value in the application’s Auth0 Settings tab.
        • Client Secret – Client Secret of the application. You can find this value in the application’s Auth0 Settings tab.
        • Scope Specify access privileges for tokens.
    1. Click Save to authorize the SSO authentication type. You have successfully enabled SSO.

    SSO_Server_settings.png

    When SSO is set up, users will be able to log in once and access Enlighted Manage in the Cloud (EMC). When the user logs in, the user is redirected to the authentication domain Auth0, where they will be asked to go in. If the user is already logged in at the authentication domain, they are immediately redirected to the EMC domain without signing in again.

    Follow the procedure described in Add Users and User Roles for adding and managing users. The administrator must then assign the user the desired role and grant them privileges to the selected facilities. Refer to the article Assign Facility to a User.
    Powered by