Login Sources (SSO)

Login Sources define the various methods by which users can sign into the system. This feature provides administrators with flexible control over user authentication, allowing for standard OPSCOM logins or integration with external identity providers like SAML or LDAP, enhancing convenience and security for diverse user populations.

Setup & Configuration

Login sources are managed under the System Configuration menu, within the Users section.

  1. Hover over System Configuration, Users, and click Login Sources.
Default Login Source
Adding Login Sources

OPS-COM supports multiple login sources, allowing some users to utilize SSO while others log in directly.

  1. On the Login Sources page, click the Add Login Source button.

  2. Fill out the required information:

    • Red fields are required to be filled before you can click Save.
    • Yellow fields are technically required for the login source to function correctly, but they will still allow empty or invalid values to be saved initially. Yellow fields can also indicate that a change has been made to the field.

    The Login Source - Code field is crucial as it's what the user profile will match against when associating users with this new login source. However, only one login source code can be activated at a time for a particular type (e.g., you can have multiple SAML configurations, but only one primary 'SAML' code active for user matching at a time if the system differentiates by 'type' of code rather than unique code string across all). The source name (code) itself is typically determined by your Identity Provider, with the exception of 'OPSCOM' for direct logins.

  3. Name can be anything that is identifiable to you.

  4. Login Source is what you will see on the user profile to indicate if this user will login with a special source. Often is is called SSO or SAML
  5. Domain Name for OPS-COM to use should be set to the OPS-COM domain without any references to admin etc. For example, if the domain name you login looks like CLIENTID.admin.ops-com.com/admin, this should be changed to CLIENTID.ops-com.com only.
  6. Do not fill out the rest of the fields until you are ready to follow the instruction for setting up your SSO information.
  7. Click Save Changes to add the new login source.


Using this Feature

Once login sources are added, you can manage their status and properties.

Managing Login Sources

From the Login Sources page, you can manage your configured login sources using the buttons next to each entry:

Active/Inactive/Hidden Login Sources

You can make Login Sources Active, Inactive or Hidden. If a source is made Inactive, users who were previously connected will no longer be able to login and must be changed to a different login source.

image.png


Best Practices & Considerations


Revision #17
Created 21 May 2024 11:19:05
Updated 17 July 2025 09:04:47 by Shannon Jones