Difference between revisions of "SSO Check List"
IVSWikiBlue (talk | contribs) |
IVSWikiBlue (talk | contribs) |
||
Line 35: | Line 35: | ||
<dl> | <dl> | ||
<dt>Display Name Attribute</dt> | <dt>Display Name Attribute</dt> | ||
− | <dd class="singleLineHeight">This specifies the user attribute (such as username or email) that VALT displays within the application. <em>Helpful when people are not easy to recognize by the username field</em>.</dd> | + | <dd class="singleLineHeight">This specifies the user attribute (such as username or email) that VALT displays within the application.</dd> |
+ | <dd class="singleLineHeight"><em>Helpful when people are not easy to recognize by the username field</em>.</dd> | ||
<dt>Pin Code</dt> | <dt>Pin Code</dt> | ||
− | <dd class="singleLineHeight"></dd> | + | <dd class="singleLineHeight">This specifies the code used for authentication into [[BEAM]].</dd> |
+ | <dd class="singleLineHeight"><em>Without one set, no pin is needed to enter BEAM</em>.</dd> | ||
<dt>Card Number</dt> | <dt>Card Number</dt> | ||
− | <dd class="singleLineHeight"></dd> | + | <dd class="singleLineHeight">This specifies the card number associated with a user.</dd> |
+ | <dd class="singleLineHeight"><em>Only applies to customers with [https://www.ipivs.com/products/valt-room-controls card readers]</em>.</dd> | ||
<dt>Email</dt> | <dt>Email</dt> | ||
− | <dd class="singleLineHeight"></dd> | + | <dd class="singleLineHeight">The users email can also be pulled into the system.</dd> |
+ | <dd class="singleLineHeight"><em>If the VALT application is not connected to mail server, this field is not used for anything.</em></dd> | ||
</dl> | </dl> | ||
− | |||
− | |||
{{hr}} | {{hr}} |
Revision as of 14:37, 27 March 2024
Contents
SAML Check List
Where to Begin?
Before SSO is configured on your VALT server, there are a few things that need to be done, setup, and understood. This article aims to help you identify where you are in the process and what steps might need to be done before you configure SSO on your server!
The following list of items should be done, in order. Identifying where you are in this process is your first step.
SSO Checklist
☑ Server racked and patched
☐ SSL certificate and NTP server installed
☐ Understanding of VALT group mappings
☐ Understanding of user creation and management
Required Information from IdP
- Identity Provider (IdP) URL
- This refers to the service or application that manages and authenticates user identities, which VALT will use to verify login credentials.
- Remote Sign-In URL
- This is the URL provided by the IDP where users are redirected to initiate the login process.
- Remote Sign-Out URL
- This URL leads to the IDP's logout page, where users can safely end their sessions, ensuring a secure sign-out process from VALT.
- Certificate in .cer format
- VALT requires a digital certificate in .cer format from the IDP to establish a secure, encrypted communication channel.
Optional Items
🕮VALT is also able to map custom attributes to some of the following fields for a user:
- Display Name Attribute
- This specifies the user attribute (such as username or email) that VALT displays within the application.
- Helpful when people are not easy to recognize by the username field.
- Pin Code
- This specifies the code used for authentication into BEAM.
- Without one set, no pin is needed to enter BEAM.
- Card Number
- This specifies the card number associated with a user.
- Only applies to customers with card readers.
- The users email can also be pulled into the system.
- If the VALT application is not connected to mail server, this field is not used for anything.
User Mapping
User mapping is used to map groups in the customer's system to groups within VALT. Users are mapped to VALT groups using attributes and values being passed from the IdP.
✎NOTE: SSO in VALT is a one to one mapping for groups
Required
- Name
- The value to define the mapping. Used only in this section of VALT.
- Attribute
- The item that gets passed back to VALT.
- User Value
- The value of the item that gets passed back to VALT.
- Group to Add
- The group created on the VALT side that defines the user's rights in the application.