Security Assertion Markup Language (SAML) is an XML standard that allows secure web domains to exchange user authentication and authorization data. Using SAML, Watchman Monitoring can contact a separate online identity provider to authenticate users who are trying to access the Dashboard. SAML Integration allows for Single Sign-on (SSO) to Watchman Monitoring.
Watchman Monitoring works with Okta, OneLogin and a number of authentication providers. See SAML Providers for a current list of supported authentication providers.
Configuring Single Sign On
Navigate to Settings > Security
Select Enable SAML SSO to display the SAML SSO configuration options.
Enter your authentication provider SAML Identity Provider Metadata URL.
Your Callback URL ends in
Visit your SAML configuraton page for the complete URL
You can optionally disable use of password based logins for administrator and employees.
End Users or Client Users are rarely added, their access is read-only, and to ease support issues for our subscribers, end users will not be forced to use Two-factor Authentication. End users may, however, elect to enable Two-factor Authentication regardless of the company-wide policy.
Default Permissions for New Users Created Using SAML
SAML can generate new users for you in Watchman Monitoring. Set the default permissions for new users.
Once a SAML User has been created, Roles and Permissions can be adjusted. See Changing User Permissions in the Watchman Monitoring Server Dashboard.
Default Group Access for Users Created Using SAML
Employees can be restricted from viewing certain Groups
Add one or more Groups Employees should not have access to when created.
End Users must be assigned Groups
Add one or more Groups End Users should have access to when created.
Logging in with SAML SSO
With SAML configured, an additional button to Sign in with SSO will be displayed on the login page. Clicking on the Sign on with SSO will take you to the SAML provider.