SAML 2.0 identity provider
Overview
The platform includes a feature that allows you to authenticate external applications using your CYPHER platform as the SAML identity provider.
Installing the SAML 2.0 Identity Provider app
To use the platform as a SAML 2.0 identity provider, you must first install the app. To install the app:
- Click Admin on the primary navigation menu.
- Click App center from the fly-out menu.
- Click Install on the SAML 2.0 Identity Provider tile in the Authentication section of the App center.
Accessing identity provider settings
After installing the SAML 2.0 Identity Provider app, you can access the SAML identity provider settings to be used for a third-party application.
To access the SAML identity provider configuration information:
- Click Admin from the primary navigation menu.
- Click Single sign-on from the fly-out menu.
- Click SAML 2.0 as identity provider.
The SAML 2.0 identity provider page displays.
- Click Enable to enable the platform to be used as a SAML 2.0 identity provider.
- To use the platform as a SAML 2.0 identity provider, you must have unique emails enabled on your platform. If you do not have unique emails enabled on your platform, you will see the following message: Email uniqueness is not enabled. Please enable email uniqueness to enable SAML 2.0 as identity provider.
- To require unique emails:
- Click Admin from the primary navigation menu.
- Click Policies from the fly-out menu.
- Click the Require email addresses to be unique checkbox in the Log in section.
After enabling SAML 2.0 identity provider, the SAML identity provider settings display. The four parameters can be copied and used to set up single sign-on in the third-party app.
Two new buttons also display:
- Click Rotate certificate if you want to introduce a new certificate to replace the existing one.
- Click Disable to disable SAML 2.0 identity provider.
Logging in using CYPHER Learning as a SAML identity provider
After configuring your platform as the SAML identity provider for a third-party application, users can sign in to the application using their CYPHER credentials.
- When users choose your platform as the sign in option on the third-party application, they are redirected to your platform to authenticate. After a successful sign-in, they are redirected back to the third-party application.
- If users are already logged into your CYPHER learning platform, they will be automatically signed in to the third-party application when accessing it from within the learning platform.
Related Articles
SAML 2.0 SSO
Overview SAML (Security Assertion Markup Language) is an XML-based, open-standard data format for exchanging authentication and authorization data between an identity provider and a service provider. Our SAML 2.0 Single sign-on integration allows ...Single sign-on
Overview Single sign-on (SSO) is an authentication process that allows users to access multiple applications using a single set of login credentials. The platform supports SSO through several providers, including Google Workspace, LDAP, and Microsoft ...edX
Overview edX provides high-quality education both in-person and online. By providing thousands of courses in topics ranging from architecture, computer science, language, and medicine, edX believes in the transformative power of education. Our ...LTI: Adding tool providers
Overview LTI stands for Learning Tool Interoperability, an initiative managed by 1EdTech to seamlessly integrate learning applications and courses. It includes a standard protocol for establishing a trusted relationship between the tool provider and ...Panopto
Overview Panopto is a software that provides lecture recording, screencasting, video streaming, and video content management, tools that are often used in E-learning environments. Panopto comes with a web-based content management system, a web-based ...