Ideagen Luminate logo Ideagen Luminate logo
Navigation
Need help?
Send feedback
Sign in
This page does not meet FedRAMP security standards. Please avoid entering sensitive or classified information. Learn more
Learn more
Learn more

Looking for help?

Common queries

View all

Send us feedback

Megaphone illustration

Before you start

This form is for Ideagen Luminate feedback only. Your submission will not receive a response.

Looking for support? Select the solution you need help with and open a ticket with us.
New article Recently updated

Managing SSO and password behaviors

By Jackie Sexton
  • Last updated
⌘ K
Search this article
Print this article

Who is this article for?

Ideagen EHSQ Enterprise or Decani Administrators and Module Developers who are tasked with overseeing and managing SSO behaviors

Defined responsibilities and elevated access required.

If an environment has Single Sign-on (SSO) certificate enabled, you will see an additional section for setting up SSO behaviors for individual users. 

If SSO is required for a Subscriber, there’s no need to configure individual behaviors for each user, unless you want to allow certain users to sign in using a username and password. 

The setting in the administrative preferences screen under the Admin Preferences - SO Setting tab will show whether Subscriber SSO is required or optional.

  • Login Behavior - Use this field to require that individual users sign in via SSO, even if it is optional. Alternatively, if SSO is required, individual users could be allowed to sign-in via username and password. Finally, if an area has an IDP Override set up, users can be required to sign-on via that mechanism. In this case, specify which Override they should use in the IDP Override field.
  • Forced SSO: The platform can force the use of SSO for all users, meaning that users cannot log directly into the platform without using SSO.
  • IDP Override - If an area has an IDP Override set up, the IDP Override field can be used to append that override onto links in system-generated e-mails. This field is also used in conjunction with the Login Behavior field when the "IDP Override Required" behavior is selected. (Contact a Technical Account Manager (TAM) for more details on the IDP Override functionality.)
  • Mobile Behaviour - The mobile login behavior must reflect the system settings since the Mobile app interacts with the server using RESTConnect, and because RESTConnect's login behaviors are controlled by the settings outlined in the options above, it is important that the Mobile Behavior settings are carefully aligned and coordinated with the overall login behavior. This ensures a consistent and seamless authentication experience across both web and mobile platforms.

 

What do you think about this article?

Your feedback helps us improve

More articles in this section

Looking for more help? Ask the Community

On this page