This article describes how to add a channel for identity orchestration in Smart ID Digital Access component and select and configure a plugin that is able to communicate with the desired service. That channel is used when you make an access rule requiring identity orchestration. When you add this access rule to a web resource, orchestration will be enabled.
Note |
---|
Make sure that the web resource uses the same SSO domain as the channel in the access rule. |
...
Expand |
---|
|
- An SSO domain must be available where the orchestrated identity will be stored.
|
Step-by-step instruction
...
...
...
- Digital Access Admin with an administrator account.
|
Expand |
---|
|
You need a plugin that is able to communicate with the desired service. Default delivered services are a Google Apps, MediaWiki and an SCIM plugin. If another type of service is needed this can be accomplished by writing a new plugin. - In
|
...
- Digital Access Admin, go to Manage System.
- Click Identity Orchestration and select the Plugins tab to see what plugins that are available and to upload new plugins.
- If you upload a plugin, click Save to update the settings.
|
Expand |
---|
title | Add identity orchestration channel |
---|
|
- In
|
...
- Digital Access Admin, go to Manage System.
- Click Identity Orchestration and select the Channels tab.
- Click Add Identity Orchestration channel...
- Enter a Display Name.
- Select the Plug-in to be used.
- Select an SSO Domain. When user have been orchestrated, the orchestrated identity is stored in this SSO domain.
- Click Next.
- Enter configuration parameters for the channel, for help click the ?-sign.
|
Related information