Before you enable Single Sign-On (SSO), make sure you have configured all components in the SSO configuration page:
In the SAML section, make sure you configure the following:
Service provider settings, which set up Gateway as a service provider for the Identity Provider (IdP)
Identity provider settings, with metadata for the identity provider.
- (Optional) Advanced settings for signing authorization and encryption in the SAML section.
In the OAuth section make sure you fill in all of the OAuth settings and details.
To enable SSO for Gateway:
-
Open the SSO section of the SSO Configuration window. (Click
Settings at the bottom of the navigator on the left,
expand Configurations, then click SSO
configuration. If the SSO settings
are not displayed, click SSO to scroll to
it.) At the top of the page, select the Enable SSO checkbox.
Click Save (in the lower right corner).
We strongly recommend that you test your SSO connection right away.
To test SSO user logins, open a new browser session and log in to Gateway with the username and password of an SSO user.
To test API access, use an API testing tool like Postman to test the OAuth configuration in Address Manager. For more information, see the Postman documentation at https://learning.postman.com/docs/postman/sending-api-requests/authorization/#oauth-20.
Tip: We recommend retesting the connection immediately after making any changes to any SSO configuration component.