Authentication
The Authentication tab allows organizations to use separate SSO authentication servers for improved security.
To configure authentication settings for an organization:
- When creating or editing an Organization, go to Authentication.
- In the Authentication tab, enter the following information:
Settings
Guidelines
Override Authentication Settings
Enable to override authentication settings set up in Authentication.
Note: This option is disabled by default.
Enable Two-factor Authentication
Enable two-factor authentication for the organization.
SSO IDP Entity URL
Required. IDP Entity URL (ID) or URN for SAML provided by IDP server.
IDP Sign On Service Endpoint URL
Required. Endpoint URL for IDP (Post) provided by IDP server.
IDP Sign On Service Redirect Endpoint URL
Required. Endpoint URL for IDP (Redirect) provided by IDP server.
IDP Logout Service Endpoint
Required. IDP logout URL provided by IDP.
SSO Certificate
Required. Certificate provided by IDP used by SP to decrypt the signed response.
View/Change SSO Roles
Select to map the SSO roles with the local roles. See SSO Roles.
- Click Save.
Click the Reset button to reset entries in the table. |