Configure SSO Settings
Configure general information about an SSO Settings.
Package and Permission Required
The Auth package must be installed.
Furthermore, your user account or group membership must have the "Settings: Update Settings" permission to edit SSO settings unless your user account has the Make this user a Super Admin setting selected.
See the Settings permissions or ask your Administrator for assistance.
Configure SSO Settings
Notice to Administrators
Enhance security for your ProcessMaker Platform instance by following these best practices. Among these best practices are to require all ProcessMaker users to log on to your ProcessMaker Platform instance via Single Sign-On (SSO), OAuth, OKTA and/or two-factor authentication.
Configure the following SSO settings as necessary:
Enable Standard Login
Enable to display settings to log on using user credentials. When disabled, settings only display SSO log on options.
Follow these steps to enable display settings for standard log on:
View your SSO settings. The SSO tab displays.
Enable the Allow Standard Login toggle key. The following message displays: The setting was updated.
Enable Automatic Registration
Enable whether SSO users should automatically register the first time that they log on.
Follow these steps to enable automatic registration:
View your SSO settings. The SSO tab displays.
Enable the Automatic Registration toggle key. The following message displays: The setting was updated.
Enable Permissions for SSO Users
Specify which permissions to assign new users that are created via SSO:
Follow these steps to specify which user permissions to assign new users created via SSO:
View your SSO settings. The SSO tab displays.
Enable permissions as necessary. See Permission Descriptions for Users and Groups for descriptions.
Click Save. The following message displays: The setting was updated.
Enable Groups for SSO Users
Select to which groups to assign users created via SSO.
Follow these steps to select to which groups to assign users created via SSO:
View your SSO settings. The SSO tab displays.
Enable groups as necessary.
Click Save. The following message displays: The setting was updated.
Copy Permissions and Groups for SSO Users
Copy to clipboard a JSON-formatted object of all assigned permissions and groups for users created via SSO.
Follow these steps to copy the permissions and groups for SSO users:
View your SSO settings. The SSO tab displays.
Enable Default SSO Login
Select a default SSO integration to allow users be automatically redirected to the IDP Single Sign On log on page instead of displaying the normal Login page. When the user goes to the log on page, that user is redirected to the selected provider.
Follow these steps to enable default SSO Integration:
View your SSO settings. The SSO tab displays.
Select an SSO identity provider among:
Select the ProcessMaker SSO login option if you do not want an SSO identity provider as the default log on. This option ensures LDAP users to verify accounts in ProcessMaker Platform. This option also helps to log on as an administrator while fixing SSO problems.
Click Save. The following message displays: The setting was updated.
Enable Debug Mode
Select whether detailed SSO errors should be displayed. It is recommended to disable the debug mode in production servers.
Follow these steps to enable automatic registration:
View your SSO settings. The SSO tab displays.
Switch on the Debug Mode toggle key. The following message displays: The setting was updated.
Enable SSO Identity Providers
Select whether to enable single sign-on via SSO identity providers to log on as necessary. The SSO identity provider options display on the log on screen.
View your SSO settings. The SSO tab displays.
Related Topics
Last updated
