Configuring SAML for Single Sign-on

Last updated:

Security Assertion Markup Language (SAML) is an XML standard that allows secure web domains to exchange user authentication and authorization data. Using SAML, Watchman Monitoring can contact a separate online identity provider to authenticate users who are trying to access the Dashboard. SAML Integration allows for Single Sign-on (SSO) to Watchman Monitoring.

Watchman Monitoring works with Okta, OneLogin and a number of authentication providers. See SAML Providers for a current list of supported authentication providers.

Configuring Single Sign On

Navigate to Settings > Security

Settings > Security

Configuring SAML

Select Enable SAML SSO to display the SAML SSO configuration options.

Enable SAML SSO

Enter your authentication provider SAML Identity Provider Metadata URL.

Your Callback URL ends in /users/auth/saml/callback

Visit your SAML configuraton page for the complete URL

 

Configuring SAML SSO

You can optionally disable use of password based logins for administrator and employees.

End Users or Client Users are rarely added, their access is read-only, and to ease support issues for our subscribers, end users will not be forced to use Two-factor Authentication. End users may, however, elect to enable Two-factor Authentication regardless of the company-wide policy.

Default Permissions for New Users Created Using SAML

SAML can generate new users for you in Watchman Monitoring. Set the default permissions for new users.

Default Permissions for New Users Created Using SAML

Once a SAML User has been created, Roles and Permissions can be adjusted. See Changing User Permissions in the Watchman Monitoring Server Dashboard.

Default Group Access for Users Created Using SAML

Employees can be restricted from viewing certain Groups

Add one or more Groups Employees should not have access to when created.

New Employee Group Permissions

End Users must be assigned Groups

Add one or more Groups End Users should have access to when created.

New End User Group Permissions

Logging in with SAML SSO

With SAML configured, an additional button to Sign in with SSO will be displayed on the login page. Clicking on the Sign on with SSO will take you to the SAML provider.

Login Page with SAML SSO

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.