SAML 2.0 identity provider
Overview
The platform includes a feature that allows you to authenticate external applications using your CYPHER platform as the SAML identity provider.
Installing the SAML 2.0 Identity Provider app
To use the platform as a SAML 2.0 identity provider, you must first install the app. To install the app:
- Click Admin on the primary navigation menu.
- Click App center from the fly-out menu.
- Click Install on the SAML 2.0 Identity Provider tile in the Authentication section of the App center.
Accessing identity provider settings
After installing the SAML 2.0 Identity Provider app, you can access the SAML identity provider settings to be used for a third-party application.
To access the SAML identity provider configuration information:
- Click Admin from the primary navigation menu.
- Click Single sign-on from the fly-out menu.
- Click SAML 2.0 as identity provider.
The SAML 2.0 identity provider page displays.
- Click Enable to enable the platform to be used as a SAML 2.0 identity provider.
- To use the platform as a SAML 2.0 identity provider, you must have unique emails enabled on your platform. If you do not have unique emails enabled on your platform, you will see the following message: Email uniqueness is not enabled. Please enable email uniqueness to enable SAML 2.0 as identity provider.
- To require unique emails:
- Click Admin from the primary navigation menu.
- Click Policies from the fly-out menu.
- Click the Require email addresses to be unique checkbox in the Log in section.
After enabling SAML 2.0 identity provider, the SAML identity provider settings display. The four parameters can be copied and used to set up single sign-on in the third-party app.
Two new buttons also display:
- Click Rotate certificate if you want to introduce a new certificate to replace the existing one.
- Click Disable to disable SAML 2.0 identity provider.
Logging in using CYPHER Learning as a SAML identity provider
After configuring your platform as the SAML identity provider for a third-party application, users can sign in to the application using their CYPHER credentials.
- When users choose your platform as the sign in option on the third-party application, they are redirected to your platform to authenticate. After a successful sign-in, they are redirected back to the third-party application.
LinkedIn Learning auto-login
If you have a LinkedIn Learning catalog, a great benefit of setting up your platform as a SAML identity provider is the ability to enable auto-login for your users to LinkedIn Learning. To set up LinkedIn Learning auto-login follow these steps:
- Enable SAML identity provider on your platform (follow the steps previously covered in this article).
- Set up your platform as an SSO provider with LinkedIn Learning. Visit the LinkedIn Learning SSO Implementation Guide to learn how.
- Configure and enable the LinkedIn Learning catalog. Visit the LinkedIn Learning article for more details.
- Enable the platform to act as a single-sign on provider for the LinkedIn Learning catalog. To enable the feature:
- Click Admin from the primary navigation menu.
- Click Catalog from the fly-out menu.
- Click the configure
icon in the Settings column for LinkedIn Learning.
- Click Edit in the Catalog Provider section.
- Select the Act as a single-sign on provider for this catalog checkbox.
- Click Save.
Coursera auto-login
If you have set up your platform as a SAML identity provider and have a Coursera catalog, you can enable auto-login for your users to Coursera courses. To set up Coursera auto-login follow these steps:
- Enable SAML identity provider on your platform (follow the steps previously covered in this article).
- Set up your platform as an SSO provider with Coursera. Visit the Coursera Configure single sign-on support center article to learn how.
- Configure and enable the Coursera catalog. Visit the Coursera article for more details.
- Enable the platform to act as a single-sign on provider for the Coursera catalog. To enable the feature:
- Click Admin from the primary navigation menu.
- Click Catalog from the fly-out menu.
- Click the configure
- Click Edit in the Catalog Provider section.
- Select the Act as a single-sign on provider for this catalog checkbox.
- Click Save.
Related Articles
SAML 2.0 SSO
Overview SAML (Security Assertion Markup Language) is an XML-based, open-standard data format for exchanging authentication and authorization data between an identity provider and a service provider. Our SAML 2.0 Single sign-on integration allows ...Single sign-on
Overview Single sign-on (SSO) is an authentication process that allows users to access multiple applications using a single set of login credentials. The platform supports SSO through several providers, including Google Workspace, LDAP, and Microsoft ...edX
Overview edX provides high-quality education both in-person and online. By providing thousands of courses in topics ranging from architecture, computer science, language, and medicine, edX believes in the transformative power of education. Our ...LTI: Adding tool providers
Overview LTI stands for Learning Tool Interoperability, an initiative managed by 1EdTech to seamlessly integrate learning applications and courses. It includes a standard protocol for establishing a trusted relationship between the tool provider and ...Panopto
Overview Panopto is a software that provides lecture recording, screencasting, video streaming, and video content management, tools that are often used in E-learning environments. Panopto comes with a web-based content management system, a web-based ...