Single sign-on is third-party software that authenticates users to multiple services without requiring the user to log in multiple times. It is most effective when users need to authenticate to multiple services over a WAN, but also over complex LANs where users must authenticate to multiple and disparate services.
The Integration for Single Sign-On module allows the OnBase Web Client to integrate with most single sign-on vendors so that a user is automatically logged in to OnBase as part of a single sign-on solution. When a user attempts to access OnBase, Integration for Single Sign-On communicates with the configured single sign-on vendor to authenticate the user.
Integration for Single Sign-On is not supported for use with the OnBase Client or Unity Client. For other automatic login options, see Configuring Standard Authentication.
The Integration for Single Sign-On module provides a solution for integrating OnBase with several popular single sign-on vendors without additional customization. The following table lists these vendors and the support level for each of them.
Vendor |
Notes |
---|---|
Active Directory Authentication (NT Authentication) |
Identity Provider (IdP) initiated only |
Access Manager |
Identity Provider (IdP) initiated only |
CAS |
Redirects authentication to the CAS browser |
Microsoft MailApp |
Identity Provider (IdP) initiated only |
OnBase Entrust |
Identity Provider (IdP) initiated only |
PeopleSoft Enterprise |
Identity Provider (IdP) initiated only |
SAML |
Identity Provider (IdP) initiated SAML 2.0 only |
SAP Enterprise Portal |
Identity Provider (IdP) initiated only |
Siteminder |
Identity Provider (IdP) initiated only |
Integration for Single Sign-On can also integrate with custom authenticators, but custom integrations must be deployed in a way consistent with the authentication solution. Please contact your first line of support to create or integrate a custom single sign-on solution.