How to: Setup SAML Designer SSO for Case Management Users
Overview
Unqork's Case Management Solution supports SAML Security Assertion Markup Language (SAML) is a protocol that allows an identity provider (IdP) to send a user's credentials to a service provider (SP) to verify their identity and grant them access to a service. Single Sign-On (SSO) for Case Management Designer Creators and Administrators. Once SSO Single Sign-On is an authentication scheme that enables users to use one set of login credentials across multiple services. is set up, Designer users can access the Unqork Designer Platform Case Management application using assigned SSO accounts instead of an Unqork-specific email address and password.
Designer (Creator Also known as Unqork Users, or Designer Users; is anyone who is inside the Unqork platform.) users can also impersonate the following Case Management Express roles in Express View Express View is how your end-user views you application. Express View also lets you preview your applications to test your configuration and view the styling. This is also the view your end-users will see when interacting with your application. After configuring a module, click Preview in the Module Builder to interact with the module in Express View.:
- Case Worker: ucm-caseWorker
-
Case Manager: ucm-caseManager
-
Administrator: ucm-administrator
Setting Up SAML Express SSO for Case Management Users
You'll set up or edit an existing SAML Security Assertion Markup Language (SAML) is a protocol that allows an identity provider (IdP) to send a user's credentials to a service provider (SP) to verify their identity and grant them access to a service. SSO Single Sign-On is an authentication scheme that enables users to use one set of login credentials across multiple services. configuration to include the additional Case Management attributes. Once set up, administrators can create and assign Designer (Creator Also known as Unqork Users, or Designer Users; is anyone who is inside the Unqork platform.) users to Case Management applications.
What You Need
-
Environment-level Administrator Access
-
Access to the SAML Security Assertion Markup Language (SAML) is a protocol that allows an identity provider (IdP) to send a user's credentials to a service provider (SP) to verify their identity and grant them access to a service. IdP Identity provider (IdP) authentication is a process that verifies a user's identity and authorizes their access to applications and services. IdPs are systems that store and manage digital identities, including usernames, passwords, and biometric information. Configuration page
Create the SAML SSO Configuration
To create a new SAML Designer SSO configuration, begin by configuring a new SSO on the Single Sign-On (SSO) Management page:
| 1. | At the top right of the Unqork Designer Platform, click Administration. |
| 2. | Under Environment, click Single Sign-On (SSO). |
| 3. | Click + New SSO ▾. |
| 4. | Select Designer. The New Designer SSO modal A modal is a window that appears on top of the content you are currently viewing. displays. |
| 5. | Based on your SAML Security Assertion Markup Language (SAML) is a protocol that allows an identity provider (IdP) to send a user's credentials to a service provider (SP) to verify their identity and grant them access to a service. SSO configuration needs, set up the Basic Information and Configure Protocol tabs accordingly. |
To learn more about configuring SAML Designer SSO protocols, view our Setting Up Microsoft Entra ID for SSO in Designer (SAML) and Setting Up Okta for SSO in Designer (SAML) articles.
| 6. | After configuring the Basic Information and Configure Protocol tabs, proceed to the Attribute Mapping tab. |
| 7. | (Optional) If this is an existing SSO, click the (Edit) button. |
| 8. | Map the following SAML Claims to their Unqork Attributes: |
| SAML Claim | Unqork Attribute | Description |
|---|---|---|
|
{{ NameID }} |
userId |
The Designer User ID value. The SAML Claim value {{ NameID }} automatically maps to the Subject NameID on the IdP Configuration page. |
|
Administrator |
designerRoles |
Assign an Unqork Designer Platform Designer role to the user. To let Creators Also known as Unqork Users, or Designer Users; is anyone who is inside the Unqork platform. edit a Case Management application, assign a role with View, Update, Create, and Delete permissions. |
Discover how to create and edit Designer roles in our Creator Role Administration article.
| 9. | Click Save. |
The SAML SSO Configuration is now ready to use. Access your SAML Security Assertion Markup Language (SAML) is a protocol that allows an identity provider (IdP) to send a user's credentials to a service provider (SP) to verify their identity and grant them access to a service. IdP Identity provider (IdP) authentication is a process that verifies a user's identity and authorizes their access to applications and services. IdPs are systems that store and manage digital identities, including usernames, passwords, and biometric information. Configuration page to create and test your new Case Management Designer users.
Resources
