Versions Compared
Key
- This line was added.
- This line was removed.
- Formatting was changed.
The EmpowerID SSO framework allows you to configure a Smart Card connection as an identity provider (IDP) for EmpowerID.
Info |
---|
|
|
Tip | ||||||||||
---|---|---|---|---|---|---|---|---|---|---|
Once the IDP Connection has been set up for smart cards, you can create a link similar to the one below to allow users to login log in to EmpowerID using their smart cards.
|
To configure an IDP connection for a smart card
From the navigation sidebar, expand Admin > Applications and DirectoriesConfigure the IDP Connection
On the navbar, expand Apps and Authentication > SSO Connections and click SAML.
On the SAML Connections tab
, search for
Info |
---|
The FQN of the Account Directory must match the Root CA CN of the smart card certificate issuer for EmpowerID to authenticate the smart card user. |
smartcard and then click Login using SmartCard.
Image Added
Image Added
This directs you to the View One page for the connection.Click the Display Name link to put the connection in Edit mode.
Image AddedOn the Edit page for the connection, scroll to the Certificates section and select the signing and verifying certificates for your environment from the Signing Certificate and Verifying Certificate drop-downs.
- Image Added
Select the Domains tab and then click the Add
button in the Assigned Domains section.
Image AddedIn the Add Domain dialog that appears,
enter the name of the
domain where the SmartCard login tile
should appear on the Login page and then click the tile for that domain.
Click
Save to close the
dialog.
Image AddedBack in the Connections Details page, click Save to save your changes.
Now that the IDP Connection is configured, you can test it by following the procedure outlined below.
To testTest the Smart Card connection
Insert your Smart Card reader on a machine and then launch your web browser, pointing it to the domain name you configured for the Smart Card ID Connection.
Click the Login using your SmartCard button.
In the Select a certificate dialog that appears, select the appropriate authenticating certificate and then click OK.
Tip | ||
---|---|---|
| ||
The Check for EmpowerID Login page only appears the first time you log in to EmpowerID with your smart card. |
In the Check for EmpowerID Login page the appears, click Yes if you wish to link the smart card to an existing user or No if you wish to link the smart card to a new user.
Enter your EmpowerID Login or Email in the form and click Submit. The EmpowerID Person must have a valid email address as EmpowerID sends a one-time password to that address.
Image Removed
Check your email for the one-time password.
Back in the EmpowerID Web application, type the one-time password into the Password form and click Submit.
Div | |||||||
---|---|---|---|---|---|---|---|
| |||||||
IN THIS ARTICLE | topicTOC
Table of Contents | | maxLevel |
|
style | font-size: 1rem; margin-bottom: -65px; margin-left: 40px;text-transform: uppercase; |
---|
On this page
|