How do I use an external IdP for user authentication?
- 22 Sep 2023
- 1 Minute to read
- Print
- DarkLight
How do I use an external IdP for user authentication?
- Updated on 22 Sep 2023
- 1 Minute to read
- Print
- DarkLight
Article summary
Did you find this summary helpful?
Thank you for your feedback
Configuring a Different Identity Provider for User Authentication
RapidIdentity Authentication provides a "Federation" Authentication Method that supports the use of external Identity Providers during the authentication process. It is configured on an Authentication Policy for all or specific users based on roles and attributes.
When a user attempts to login with a userid that resolves to an authentication policy using the "Federation" Authentication Method, RapidIdentity automatically forwards their login request to a Trusted Identity Provider that will authenticate the user.
To avoid having the user enter their userid both on the RapidIdentity login page and on the Trusted Identity Provider's login page (such as Azure), Rapididentity includes the userid provided on the Rapididentity login form as a URL parameter in the form of ?name=LDAP_Attribute where the name is simple string and LDAP_Attribute is the value of the specified LDAP paramater for that user.
Configure the Trusted Identity Provider
Configure the Trusted Identity Provider SAML Assertions
Configure the Trusted Identity Provider Login URL Query Parameters
Note:
The "Name" setting is a simple string that specifies the label of the parameter and the LDAP_Attribute is the value of the specified LDAP paramater for that user.
?login_hint=someone@somewhere.com
Configure the Trusted Identity Provider on an appropriate Authentication Policy
Was this article helpful?