Step 1 - Configure OpenAthens SAML Application
Please collaborate closely with the OpenAthens support team to properly configure your SAML Single Sign-On (SSO) application. Make sure to provide them with all the necessary details and information below to ensure a smooth and successful integration.
Attributes
Our service has 3 required fields: First name, Last name, and Email. For the required fields, please send as the urn:oid attribute name as shown below:
Given Name(First Name) --> urn:oid:2.5.4.42
Family Name(Last Name) --> urn:oid:2.5.4.4
User email --> urn:oid:0.9.2342.19200300.100.1.3
Consider including an attribute to distinguish staff from basic users, such as Role or Department. If basic users have a different email domain, that can also help identify who should have elevated roles.
UserID
Sometimes the UserID from an Identity Provider is in an unexpected format, this causes issues with mapping users to elevated roles. Please ensure the UserID is sent as an email address.
Note: SAML SSO is not used in conjunction with a proxy for our streaming service. We would need to enable one or the other.
Step 2 – Configure Digital Campus SAML Authentication
- Refer to the following article to continue setup in the Swank Cloud Streaming Admin:
Configuring Swank Cloud Streaming SAML Authentication
Comments
0 comments
Please sign in to leave a comment.