Setting up single sign-on

Authentication providers based on the OpenID Connect standard are available for Google, Intuit, or ADP, out of the box – you just need to enable them.

Or, if you want to set up single sign-on (SSO) with another provider that supports OpenID Connect, you can create a new option.

For information on setting up single sign-on using SAML 1.1 or 2.0, refer to Using SAML for single sign-on.

Enabling an existing authentication provider

To enable a provider:

  1. Go to Administration > System and Security > Security Settings.
  2. Click the Add Authentication Provider link.
  3. Select an option from the Provider Type drop-down.

The OpenID Connect setup parameters display, though since this is a default option, they can’t be edited.

  1. Click Add.

This SSO option will now be available for use in Replicon, once users are set up to use it.

Setting up a custom provider

To set up a custom provider:

  1. Go to Administration > System and Security > Security Settings.
  2. Click the Add Authentication Provider link.
  3. Select the OpenID Connect option from the Provider Type drop-down.
  4. Enter all parameters required to create the custom option.

Most of the parameters are standard values that are publicly available. However, you may need to extract some values, such as Client Id and Client Secret, from the third-party application.

The name you give the provider will appear on the button employees use to log in to Replicon.

  1. Click Add.

Refer to Setting up users for single sign-on (SSO) authentication for information on setting up employees to use SSO.

FAQs

Can we enable multiple providers?

Yes, you can create as many providers as you need, but each user can only be assigned one authentication ID, so they can only use one provider.

Can we create a new version of a provider that uses different parameters?

Yes, if you need it to be configured differently.

Do you support older versions of OpenID?

No, we only support OpenID Connect.