Configuring the SMART on FHIR Hyland IdP Settings - Integration for Epic - Foundation 23.1 - Foundation 23.1 - Ready - OnBase - Essential - Premier - Standard - external - Essential - Premier - Standard

Integration for Epic

Platform
OnBase
Product
Integration for Epic
Release
Foundation 23.1
License
Essential
Premier
Standard

After a SMART on FHIR application is created for the Integration for Epic, you must then configure the IdP settings to establish a connection using the Hyland IdP server.

The following procedure describes how to configure IdP settings for the SMART on FHIR application created for the Integration for Epic. The application must have the settings described in this procedure as well as any standard required settings. All other settings can be left with the default values. For more information about configuring IdP settings for a SMART on FHIR application, see the SMART on FHIR documentation.

To configure SMART on FHIR IdP settings:

  1. Open the SMART on FHIR Applications dialog box with the application you created in the previous instructions (Creating the SMART on FHIR Application) and click Hyland IdP. The Hyland IdP Settings dialog box is displayed.
  2. Paste the client ID value you copied from the Hyland IdP server into the Client ID field. This is the unique ID of the Integration for Epic client connection on the Hyland IdP server. This value is case sensitive and must match exactly the value on the Hyland IdP server.
  3. Configure the application IdP settings with the following values:
    Setting Value
    Authority URL

    The URL to the Hyland IdP server. For example, if your domain for the Hyland IdP server is my.domain, the application name of the Hyland IdP server is identityprovider, and the environment is set up for secure connections, then the URL to enter is:

    https://my.domain/identityprovider

    Client Secret

    The plain text secret that was configured for the Integration for Epic client connection on the Hyland IdP server. This value is case sensitive and must match exactly the plain text value entered on the Hyland IdP server.

    Note: Be sure you are entering the plain text value of the client secret as the plain text value entered on the Hyland IdP server is converted to a hash of the value when the client connection is saved, but the value passed from the Integration for Epic must still be plain text.
    Scopes openid
  4. Click the Endpoints tab.
  5. Configure a Token endpoint with the following values:
    Setting Value
    Type Token
    URL

    The URL to the Hyland IdP server Token endpoint for use in Token Exchange and Addendum Exchange. For example:

    https://server.domain/identityprovider/connect/token where server.domain is the domain of your Hyland IdP server and identityprovider is the Hyland IdP application name in IIS.

  6. Configure a Jwks endpoint with the following values:
    Setting Value
    Type Jwks
    URL

    The URL to the Hyland IdP server JSON Web Key Set. For example:

    https://server.domain/identityprovider/.well-known/openid-configuration/jwks where server.domain is the domain of your Hyland IdP server and identityprovider is the Hyland IdP application name in IIS.

  7. Click Save.
  8. Next, complete the instructions under Configuring the SMART on FHIR EHR Authorization Settings.