In addition to the internal user authentication mechanism, eLabProtocols offers various Single Sign-On (SSO) authentication options (e.g. AD/LDAP/SAML).
For eLabProtocols Private Cloud installations, the SAML authentication is required. eLabProtocols has been tested to support SAML authentication with:
- Microsoft ActivActive Directory Federation Services (AD FS)
- SimpleSAMLphp Service Provider
- OKTA server
To set up federated login via SAML within eLabProtocols, navigate to the System Admin panel and open the System Setting tab. Open SAML Single Sign-On.
Here you can retrieve the urls for the Service Provider EntityID, the SAML metadata URL, the SAML Assertion URL and the Logout URL. Use those in your SAML provider and set-up the mapping of the attributes eLabProtocols requires. In case you experience any problems or if you have any questions about setting up SAML authentication please contact us.
Important: when your organisation renews its SAML certificates, the metadata should be reloaded in the eLabProtocols installation to reinitialize authentication with the organisation, by clicking Load Metadata. To avoid any issues, please contact us prior to renewing certificates for more information.