- Home
- Single Sign-On and MFA
- Configuring SSO Connections
- Identity Providers
- Current: Creating IdP Domains
Creating IdP Domains
IdP (Identity Provider) domains are SSO Components in EmpowerID that you can use to set the login options available to users accessing your portal from that domain (URL). For example, if you have one domain for internal users, another domain for customers and a third domain for partners, you can create an IdP domain for each of those domains, specifying the login options to available to each. In this way, you might set up an IdP domain with Windows auth and EmpowerID forms auth options for your internal users, an IdP domain for partners with EmpowerID forms auth only and an IdP domain for customers with one or more social media login options. As long as the URL you specify for an IdP domain is fully resolvable, you can configure it with as many or few login options as needed by your login policies.
To create an IdP Domain
From the Navigation Sidebar, navigate to the SSO Components management page by expanding Admin > Applications and Directories > SSO Connections and clicking SSO Components. Click the IdP Domains tab and then click the Add IdP Domain (+) button. From the General tab of the IdP Domain Details form that appears, type the fully qualified domain name in the Domain Name field and a description for the domain in the Description field. Optionally, click the Identity Provider type tabs and select each Identity Provider that you want to appear to users as a login option for the IdP domain. Identity Provider type tabs include the following:- SAML Identity Providers - SAML identity providers are services that support SAML transactions for identity proofing and SSO. Examples include Windows authentication, the EmpowerID IdP (EmpowerID forms auth) and Smart Card authentication.
- WS-Fed Identity Providers - WS-Fed identity providers are services that support the use of WS-Security tokens for identity proofing and SSO. A popular example includes Office 365.
- OAUTH Identity Providers - OAuth identity providers are services that support the OAuth protocol for identity proofing. Popular examples include Social Media logins like Facebook, Twitter and LinkedIn.
- Related Topics
Administrative Procedures:
- Configure AD SF as an Identity Provider
- Configure Azure as an Identity Provider
- Configure Box as an Identity Provider
- Set up the Remote Windows Identity Provider Applications
- Configure Facebook as an Identity Provider
- Configure Google as an Identity Provider
- Configure LinkedIn as an Identity Provider
- Configure Paypal as an Identity Provider
- Configure Smart Card as an Identity Provider
- Configure Twitter as an Identity Provider
- Configure Windows Auth as an Identity Provider
- Configure Yahoo as an Identity Provider
- Configure Yammer as an Identity Provider
- Creating IP Address Ranges
- Setting MFA Points Granted by SSO Connections