Comment on page
Configure SSO Settings
Configure general information about an SSO Settings.
Furthermore, your user account or group membership must have the "Settings: Update Settings" permission to edit SSO settings unless your user account has the Make this user a Super Admin setting selected.
Enhance security for your ProcessMaker Platform instance by following these best practices. Among these best practices are to require all ProcessMaker users to log on to your ProcessMaker Platform instance via Single Sign-On (SSO), OAuth, OKTA and/or two-factor authentication.
Enable to display settings to log on using user credentials. When disabled, settings only display SSO log on options.
Follow these steps to enable display settings for standard log on:
- 1.
- 2.Enable the Allow Standard Login toggle key. The following message displays: The setting was updated.
Enable whether SSO users should automatically register the first time that they log on.
Follow these steps to enable automatic registration:
- 1.
- 2.Enable the Automatic Registration toggle key. The following message displays: The setting was updated.
Follow these steps to specify which user permissions to assign new users created via SSO:
- 1.
- 2.Click the Edit iconfor the New User Default Config setting. The New User Default Config screen with the Permissions tab displays.
- 3.Select a collapsed permission category to expand the view of individual permissions within that category. Otherwise, select an expanded permission category to collapse that category.
- 4.
- 5.Click Save. The following message displays: The setting was updated.
Follow these steps to select to which groups to assign users created via SSO:
- 1.
- 2.Click the Edit iconfor the New User Default Config setting. The New User Default Config screen with the Permissions tab displays.
- 3.Click the Groups tab. All available groups display.
- 4.Enable groups as necessary.
- 5.Click Save. The following message displays: The setting was updated.
Copy to clipboard a JSON-formatted object of all assigned permissions and groups for users created via SSO.
- 1.
- 2.Click the Copy to Clipboard iconfor the New User Default Config setting. The following message displays: The setting was copied to your clipboard.
Select a default SSO integration to allow users be automatically redirected to the IDP Single Sign On log on page instead of displaying the normal Login page. When the user goes to the log on page, that user is redirected to the selected provider.
Follow these steps to enable default SSO Integration:
- 1.
- 2.Click the Edit iconfor the Default SSO Login setting. The Default SSO Login screen with the SSO identity providers displays.
- 3.Select an SSO identity provider among:
- Select the ProcessMaker SSO login option if you do not want an SSO identity provider as the default log on. This option ensures LDAP users to verify accounts in ProcessMaker Platform. This option also helps to log on as an administrator while fixing SSO problems.
- 4.Click Save. The following message displays: The setting was updated.
Select whether detailed SSO errors should be displayed. It is recommended to disable the debug mode in production servers.
Follow these steps to enable automatic registration:
- 1.
- 2.Switch on the Debug Mode toggle key. The following message displays: The setting was updated.
- 1.
Last modified 28d ago