Versions Compared

Old Version 13

changes.mady.by.user Mari Fuglem

Saved on

compared with

New Version 14

changes.mady.by.user Mari Fuglem

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Users that require editing rights will have to be provisioned with a license group in Jira/Confluence. This way only the users needing to edit will consume a license while those not created in Jira/Confluence will be given an anonymous access session as fallback.

...

How to configure in KSSO

  1. Select Identity Providers in the KSSO menu and choose the applicable Identity Provider in the overview page, and IdP overview will open.

    Skjermbilde 2024-09-04 kl. 14.50.55.pngImage Removed

    Enable idp overview.pngImage Added

  2. Select Identity providers → SSO verified Anonymous Access and enable the switch SSO-Verified Anonymous Access in Kantega SSO Enterprisefor the Identity provider.

    image-20240214-145820.png

    Enable Force login in Kantega SSO Enterprise.

  3. Select Common → Force login. You must enable force Enable the switch Require login to require force anonymous users to login on public pages.

    force login.png

  4. Configure Known domains in Kantega SSO Enterprise.
    Hvis brukerkontoen finnes i JIra må du velge alternativ 3

    Known domains.pngImage Removed

    We recommend If the user account exists in JIra, you must choose option 3 “Trust identity provider to log in users only from the known domains”
    You can trust the Identity Provider To make users not in known domains to stay anonymous, select the option “Trust identity provider to log in users only from the known domains, but fallback to SSO-Verified Anonymous Access for other users.

    image-20240214-145240.pngImage Removed

    See also how to make users not in known domains stay anonymous.

f

Skjermbilde 2024-09-03 kl. 13.06.40.pngImage Removed

Skjermbilde 2024-09-03 kl. 13.07.36.pngImage Removed

Configure SSO-verified Anonymous Access in Kantega SSO Enterprise

Select Identity Providers in the KSSO menu. The Identity Provider overview page is shown.

...

Choose the Identity provider you want to configure, then select SETTINGS → SSO-Verified Anonymous Access. Enable the switch SSO-verify anonymous access.

...

  1. known domains option 3.pngImage Added


Configuring related settings in Kantega SSO Enterprise

...

The Group Memberships settings allow configuring conditions for when the user is created. This can be configured fluently with SSO-verified Anonymous Access. For example, you can configure a policy in which users and group memberships are created automatically for all users logging in and belonging to the editor group in your identity provider. In contrast, all other users will fall back to “anonymous access” after logging in with SSO.User login with IDP