Loading ...

Single Sign on and non Single Signon | Communifire Support

Home » Spaces » Communifire Support » forum » Features and Functionality » Single Sign on and non Single Signon
Communifire Support

Leave Space :

Are you sure you want to leave this space?

Join this space:

Join this space?

Add a new tab

Add a hyperlink to the space navigation. You can link to internal or external web pages. Enter the Tab name and Tab URL. Upload or choose an icon. Then click Save.

The name that will appear in the space navigation.
The url can point to an internal or external web page.
Login to follow, share, and participate in this space.
Don’t have a support community login?Create your account now
Posted in: Features and Functionality

Single Sign on and non Single Signon

Subscribe to RSS
  • cbunts

    Hi,

    I am using SSO to authenticate users to our site via AD.  We use Centrify as the broker.  I am looking to add non-ad users to the site.  I am able to invite non AD users via the Invite function and they get the registration email but since they are not in our Centrify process, they are never are able to log on.

    Is there a parameter or setting that will allow both an SSO and non SSO logons?

     

     

     

  • mtrujillo
    Answered

    Hey Chris,

    You can have AD authentication and non-ad authentication (Communifire account). Go to System Properties > EnableSAMLIntegration > change value to false.

    Your login page will give the user the option to login via their Communifire credentials or they can click a Login via SAML button to take them to SSO. We suggest changing your login page by going to Control Panel > People > User Profiles  > Login. Below is an example of using Page Builder to separate the logins.

  • cbunts

    Hi Matt,

    Just a quick follow-up question - Is it possible to white list users that are not in the SSO process and send them to the logon while having everyone else pass right through.  We really like the SSO?

  • Foster

    Hi Chris,

    That is not possible. Matt's response is the only way we we allow multiple authentication methods.

    Thanks,
    Foster 

  • cbunts

    Thanks

  • cbunts

    Hi Matt,

    I made the modifications to the logon page but my top part of my logon screen is not displaying either the Logo I put in there or the SSO button.  The bottom is showing and does work.  I tried IE, Edge, Chrome, and Safari.

    Any ideas?

  • Foster

    Hi Chris,

    The image that you provide for the logo must added via a Raw HTML widget. You would enter in the space provided the following. 

    <img src="url to image here"> 

    However, you must be sure that the image is hosted on a publicly available site such as Flickr or Imgur. Otherwise a non-logged in user will not be able to see the image. 

    As for the SSO button, please be sure that in the widget, the button template is set to the default "Button". This is the standard for the SSO login button and should appear without issue. 

    I hope this helps,
    Foster

  • cbunts

    Hi Foster,

    I am still having issues with the SSO screen.  I have now locked myself out.  The logon wont let me in to change the EnableSSO .  I cant logon to turn SSO back on.  

    Can you change the parameter back to true so I can get back in?

    Thanks

     

     

  • cbunts

    No need to reset the parameter - I was able to change my password and get in to change it. 

    However, I am still having the issue with the SSO.  

  • Foster
    Answered

    Hi Chris,

    We took a look at your Page Builder settings. The button wasn't set to the right button type. We have fixed that and conducted a test to confirm that the login page will show the login via saml button if you disable auto redirect. You can do this by going to System Properties > EnableSAMLIntegration  and changing the value to false.

    Thanks,
    Foster

  • cbunts
    Answered

    Hi Foster

    I am still getting the same results.  I put in false into the EnableSaMLogon and the button does not show up.  Does the button actually have to be named Login via SAML?  I thought it would only be the button type.

     

     

     

  • Foster

    Hi Chris,

    After some troubleshooting and testing with you and your site in the private case, we were able to correct the issue and have the button appear for your login page. 

    Thank you for reaching out to us to get this working, we hope that it makes your user login experience smooth and enjoyable. 

    Best,
    Foster

Page 1 of 1 (12 items)