Consultation Manager supports SAML SSO.
System Role: Enterprise Admin
Accessing the management area
Access is via the cog at the top right of CM. Once in the management area, click Single Sign-on, under Enterprise.
This will open the configuration settings options to the right.
General Settings
- SSO will be toggled on by default in this area.
- The Single Sign-On type will be set to SAML authentication. Currently this is the only supported type for SSO.
- Enforce Single Sign-On will be toggled off by default. This setting should be toggled on once all the settings have been completed and you have verified that SSO is performing as intended. Toggling this setting off will remove the possibility of username and password authentication.
- Sign out required is used to allow a sign out from Consultation Manager to trigger a sign out in your IdP. When this setting is toggled on, a User who logged in via SSO and who clicks Logout, Consultation Manager will route them back and also log them out of your IdP.
If yes, you must provide a sign out URL either via Metadata XML URL or in the relevant Manual Metadata field.
Identity Provider Configuration
- Enter your IDP Entity ID here.
- Select the XML Type.
You can provide this 2 ways:
-
Metadata XML URL: Provide your URL in the box below.
-
Manual Metadata: Configure the metadata settings manually in the form below.
Manual Metadata Settings include:
-
X509 Public Certificate (required)
-
Sign On URL (required)
-
Sign Out URL
-
Artifact Resolution Service URL (General required)
Service Provider Inputs
These inputs are configured on your IdP. You can copy the text by clicking the icon at the right of each value.
SAML Attributes Mapping
These inputs are configured on your IdP. You can copy the text by clicking the icon at the right of each value.