To configure the OnBase Application Server to use the Hyland IdP server for IdP authentication:
- Open the web.config file of the OnBase Application Server for editing in a plain-text editor. In a default installation, the web.config file is located at C:\inetpub\wwwroot\AppServer.
- Locate the accessTokenValidation element.
- If the accessTokenValidation element is commented out, uncomment it by removing the <!-- at the start of the element and the --> at the end of the element.
-
Set the values of the following attributes in the accessTokenValidation element:
Attribute
Value
idp
The URL of the Hyland IdP server. Do not include a tenant in the URL. This value is case sensitive.
For example, if your domain is my.domain, the Hyland IdP application name is identityprovider, and the environment is configured for secure connections, then the value is: https://my.domain/identityprovider
audience
The resources endpoint of the Hyland IdP server. This value is case sensitive.
For example, if your domain is my.domain, the Hyland IdP application name is identityprovider, and the environment is configured for secure connections, then the value is: https://my.domain/identityprovider/resources
nameClaimType
The claim in the access token that contains the user name of the user logging in. The default value is username.
apiName
Leave this value empty.
apiSecret
Leave this value empty.
- Save and close the web.config file.
- Recycle the application pool of the OnBase Application Server for the changes to take effect.