Add a hyperlink to the space navigation. You can link to internal or external web pages. Enter the Tab name and Tab URL. Upload or choose an icon. Then click Save.
I am using SSO to authenticate users to our site via AD. We use Centrify as the broker. I am looking to add non-ad users to the site. I am able to invite non AD users via the Invite function and they get the registration email but since they are not in our Centrify process, they are never are able to log on.
Is there a parameter or setting that will allow both an SSO and non SSO logons?
You can have AD authentication and non-ad authentication (Communifire account). Go to System Properties > EnableSAMLIntegration > change value to false.
Your login page will give the user the option to login via their Communifire credentials or they can click a Login via SAML button to take them to SSO. We suggest changing your login page by going to Control Panel > People > User Profiles > Login. Below is an example of using Page Builder to separate the logins.
Just a quick follow-up question - Is it possible to white list users that are not in the SSO process and send them to the logon while having everyone else pass right through. We really like the SSO?
That is not possible. Matt's response is the only way we we allow multiple authentication methods.
I made the modifications to the logon page but my top part of my logon screen is not displaying either the Logo I put in there or the SSO button. The bottom is showing and does work. I tried IE, Edge, Chrome, and Safari.
The image that you provide for the logo must added via a Raw HTML widget. You would enter in the space provided the following.
<img src="url to image here">
However, you must be sure that the image is hosted on a publicly available site such as Flickr or Imgur. Otherwise a non-logged in user will not be able to see the image.
As for the SSO button, please be sure that in the widget, the button template is set to the default "Button". This is the standard for the SSO login button and should appear without issue.
I hope this helps,Foster
I am still having issues with the SSO screen. I have now locked myself out. The logon wont let me in to change the EnableSSO . I cant logon to turn SSO back on.
Can you change the parameter back to true so I can get back in?
No need to reset the parameter - I was able to change my password and get in to change it.
However, I am still having the issue with the SSO.
We took a look at your Page Builder settings. The button wasn't set to the right button type. We have fixed that and conducted a test to confirm that the login page will show the login via saml button if you disable auto redirect. You can do this by going to System Properties > EnableSAMLIntegration and changing the value to false.
I am still getting the same results. I put in false into the EnableSaMLogon and the button does not show up. Does the button actually have to be named Login via SAML? I thought it would only be the button type.
After some troubleshooting and testing with you and your site in the private case, we were able to correct the issue and have the button appear for your login page.
Thank you for reaching out to us to get this working, we hope that it makes your user login experience smooth and enjoyable.
Choose a location