DocketManager Single Sign-on
Customer will act as the Identity Provider
what needs to be provided
entityId - issuerURL
entityOrganization - used for the username prefix
Cert X.509
DocketManager is the Service Provider.
DocketManager implementation of SAML 2.0 was built to support unsolicited response only.
Unsolicited Response SSO. In this scenario, the SP does not initiate the authentication flow and just receive a SAML Response from the IdP. The flow starts on the IdP side and once the user is authenticated they can choose a specific SP from a list and then get redirected to its URL.
SAML Assertion will be based on the usernames from the external system
Contacts with matching usernames will need to be configured within the DocketManager instance. A username prefix will be required within DocketManager, this prefix will need to be agreed upon as system configuration is required on our server.
Hashing algorithm need to be SHA256
Service Provider
ACS URL: https://{CUSTOMER SHORT NAME}.orderprintnow.com/Saml2/Acs
entityId: https://{CUSTOMER SHORT NAME}.orderprintnow.com/Saml2
Identity Provider (what needs to be provided)
entityId - issuerURL
entityOrganization - used for the username prefix
Cert X.509
DocketManager Contact Setup
- All contacts must exist in DocketManager
- Contacts must be given appropriate access including
- Security roles
- Portals
- Products
- Usernames must match the external site with a prefix
- i.e. if username is info@docketmanager.ca and prefix is dm, username must be entered as
dm-info@docketmanager.ca