Default SSO groups can be assigned for a configured third-party provider in the IdP. A default SSO group allows users to always be provisioned into a list of specified OnBase user groups when logging into a specified client application and being authenticated against the specified provider. Default SSO groups can only be configured for the following third-party providers:
- SAML
- CAS
- WS-Federation (AD FS)
- OIDC Exchange
To configure a default SSO group: