- 1 Minute to read
- Print
- PDF
Setting Up Single Sign-on (SSO)
- 1 Minute to read
- Print
- PDF
You can set up Single Sign-on, SSO, for global administrators.
You can define Single Sign-on, SSO for a team CTERA Portal either in Active Directory using the Kerberos protocol or using an external identity provider providing support for Security Assertion Markup Language, SAML 2.0. For details, refer to Configuring Single Sign-on (SSO) in the Team Administrator Guide.
CTERA Portal supports user identity federation over SAML 2.0. SAML enables you to provide Single Sign-On (SSO) capabilities for the global administrators. To set SSO for global administrators, you must create global administrators that have user names corresponding to the SAML identity provider user names. For details about adding global administrators, see Adding, Editing, or Deleting Global Administrators.
Global administrator are defined locally on the CTERA Portal and the passwords are stored on CTERA Portal to enable the administrator to bypass the SAML authentication in the event of misconfiguration of the identity provider’s login page or in case the identity provider’s login page is temporarily unavailable. For details, see Bypassing SAML Authentication.
Enabling SAML SSO for a global administrator does not enable SAML SSO for team and reseller portals. To set up SSO for team portals, refer to Configuring Single Sign-on (SSO) in the Team Administrator Guide.