The default Ruddr authentication provider supports member login via Ruddr user / member ID (email address) and password. Ruddr allows for additional authentication providers to be set up in support of Single Sign-On.
The ninth menu option within the Settings area (Figure 1) is called Authentication. The Authentication section (Figure 2) of the Settings area provides Workspace Admins with the ability to manage authentication providers for the workspace.
Figure 1 - Authentication is the Ninth Option in Workspace Settings
On the Authentication screen (Figure 2), you will be able to see any configured authentication providers and create any new authentication provider needed to support your needs.
Figure 2 - The Authentication Screen Displays Configured Providers, Which can be Activate / Inactive
The three steps in setting up single sign-on are:
- Setting up a New Authentication Provider
- Establish Identity Provider
- Set Default Authentication Provider for the Workspace
These steps are covered in the instruction below.
Setting up a New Authentication Provider
Setting up an Authentication Provider in Ruddr requires the configuration of an Identity Provider and configuring Ruddr as a Service Provider.
To do this, you will:
- Create a New Auth Provider in Ruddr as the first step in setting up Ruddr as a Service Provider.
- Configure your Identity Provider, using the Entity ID created with the auth provider.
- Finalize the setup by providing Identity Provider details to Ruddr.
To being the process, click the New Auth Provider button on the Authentication screen (Figure 2). This will open up the New Auth Provider drawer (Figure 3), where you will specify the Provider. Select from the list in the dropdown to choose either these four options:
Figure 3 - The New Auth Provider Drawer is Where you Configure Ruddr as a Service Provider
Upon choosing one of those providers, Ruddr will populate the existing fields on the drawer and will then make an additional SAML field available (Figure 4), where you can upload the SAML file from the Identity Provider.
Figure 4 - Once the Provider has been Specified, Configure the Identity Provider and Upload the SAML to Ruddr
You can edit any of the fields that were completed by Ruddr. Once you are satisfied with these settings, click Save & Close button at the bottom of the drawer.
Next, following the steps in the Ruddr Help Center article Single Sign On (SSO) - Identity Provider Setup, complete the setup of the selected provider.
SAML Settings and Entity ID / ACS URL
In some cases, you may need to provide the Ruddr Entity ID and / or Assertion Consumer Service URL (ACS URL) to the identity provider. Assuming you have created the authentication provider using the steps above, you can access the Entity ID and ACS URL by viewing the auth provider's SAML settings (Figure 6). These are accessible from the auth provider's action menu (Figure 5) on the Authentication screen (Figure 2).
Figure 5 - Access the Authentication Provider's Action Menu
Figure 6 - The Auth Provider SAML Settings are Available for the Identity Provider Setup
NOTE: You can create multiple authentication providers in Ruddr. Each authentication provider that you create will have its own unique Assertion Consumer Service URL.
Once those steps to setup the Identity Provider have been completed, you will be able to edit the authentication provider, provide the identity provider SAML to Ruddr, and Save & Close the authentication provider drawer.
Set Default Authentication Provider for the Workspace
Once the Service and Identity Providers have been configured, you will want to set the new authentication provider as the default for the workspace. To do this, access the action menu for the provider and select the Set to default menu option.
Figure 7 - Set the New Authentication Method as the Default for the Workspace
Once the provider has been set as the default for the workspace, members will need to login using that provider's credentials. If there are members with active sessions in Ruddr, they will need to logout of Ruddr and log back in using the new provider.