(12.2.1-en) Single Sign-On
- Emese Pogany
- Harald Saller
Single Sign-On (SSO) is an authentication method that can be used via a cloud-based identity provider (IdP) to access the local device and apps. This article describes the options used for configuring SSO in IGEL OS.
For a detailed description of the entire SSO configuration process, see Configuring Single Sign-On (SSO).
Menu path: Security > Logon > Single Sign-On
Single Sign-On with identity provider
☑ SSO is used as the authentication method.
To have a fallback option if something goes wrong with SSO, e.g. a network failure, it is recommended to configure local login in addition under Security > Logon > Local User. For more information, see (12.2.1-en) Local User.
☐ SSO is not used. (Default)
Identity provider
The identity provider used for the SSO configuration.
Possible options:
Okta
Azure AD
Identity Provider is Set to "Okta"
Okta URL
The URL of the Okta identity provider.
Client ID
The client ID that was created in Okta.
Client secret
This is a value created by the identity provider. The value can be copied from the Identity Provider Admin Console.
Identity Provider is Set to "Azure AD"
Azure AD Tenant Name/ID
The value you have obtained as Directory (tenant) ID in Azure AD Portal.
Application (client) ID
The value you have obtained as Application (client) ID in your Azure AD Portal.
Client secret
This is a value created by the identity provider. The value can be copied from the Identity Provider Admin Console.
If the login method is configured and the Allow system logoff option is enabled under System > Power Options > Shutdown, the user can log off the device through the shutdown menu. For information on how to access the shutdown menu, see (12.2.1-en) Commands. For information on how to configure the shutdown menu, see (12.2.1-en) Shutdown.