Access Manager helps your service provider in selecting the identity provider for authenticating a user. You can accomplish this by configuring the Introductions. This configuration enables users to select an identity provider from a list of available identity providers. However, when a common domain is not available, the Introductions class might not authenticate. In such cases, you can configure the IDP Select. When this class is configured, a user can authenticate by using an identity provider contract from a list of identity providers and save this selection. To save this selection, select the Remember Me option. Next time onwards, when the user logs in, the user is automatically redirected to the specific identity provider for authentication. The contract selection is stored in the browser cookie until the cookie expires or someone clears the cookie.
IMPORTANT:The Remember Me option does not work when running the application in the incognito or private mode.
Perform the following steps to configure IDP Select:
On the Home page, click Identity Servers > [cluster name] > Authentication > Classes > Plus icon.
Under General, select IDP Select. Click Plus icon.
Specify the following details:
|
Field |
Description |
|---|---|
|
Class Name |
The name of the authentication class. |
|
Property Name |
The name of the property. For example, ShowUser. |
|
Property Value |
The value of the property. For example, True. |
Click Save.
Continue with creating a method for this class. For configuration information, see Section 6.1.3, Configuring Authentication Methods.
IMPORTANT:Do not select the Identifies User option.
Create a contract for this class. For configuration information, see Section 6.1.4, Configuring Authentication Contracts.
After the contract is configured, it appears in the list of contracts on the login page.
IMPORTANT:Do not assign this contract as the default identity provider contract.