Before we can set things up on the Data & Insights side for Single Sign-On, you will need to set up a trust relationship with Data & Insights. (Active Directory provides security across multiple domains through interdomain trust relationships). To do this, follow one of these two sets of instructions depending on your identity provider and file a support ticket by emailing datainsights-support@tylertech.com with the requested information to complete the setup.
ADFS
Please provide this information:
- All Data & Insights-powered sites associated with your organization
- Email domain(s) that will be using SSO to sign into your site
- ADFS URL(Note: the URL has to have support for secure renegotiation) or Federation metadata file
SAML
Please provide this information:
- All Data & Insights-powered sites associated with your organization
- The name of your Identity Provider (IdP)
- E-mail domain(s) that will be using SSO to sign into your site
- Sign-in URL
- Sign out URL
- X509 Signing Certificate in PEM or CER format
- User ID Attribute (Optional)
What next?
After we receive the above information from you, we will set up a connection and provide you with the parameters from us that you will need to set up the connection with your Identity Provider. Then, we will arrange a time to begin testing the connection. Typically, we perform testing using a test email domain (i.e. @test.socrata.com). We configure the SSO connection for that email domain and test the login flow using test credentials. Alternatively, if no test email domain is available, we perform testing during a specific hour or two-hour block of time. After a successful testing period, we will enable SSO for your domain using your organization’s email domain (i.e. @socrata.com).
Comments
Article is closed for comments.