Configuring Single Sign-On (SSO) authentication often demands expertise in handling third-party identity providers (IdPs). The process typically involves significant troubleshooting by developers and communication overhead with enterprise customers. Each identity provider has its unique terminology and configuration steps, which can slow down the onboarding of new enterprise customers.
IT admins possess the necessary expertise to work with IdPs and have the best context for configuring and debugging SSO settings between your application and their systems. To streamline this process, we are introducing Admin Portal—a self-service configuration portal that empowers your customers’ admins to set up SSO connections and manage identity providers, thus reducing the overhead for your engineering and customer support teams.
.png)
Benefits of Admin Portal
- Prebuilt, No-Code UI Portal: Admin Portal comes with a prebuilt UI that can be integrated into your application without writing any code. Create an Admin Portal link in just a few clicks. No coding required. Your team can share the Admin Portal link during customer onboarding via email, Slack, or other channels.
- Map User Attributes: Admin Portal allows your customers to map user attributes between your application and their identity provider. IT admins can configure and map custom user fields offered by their identity providers.
- Customized for each Identity Provider: Admin Portal self-adjusts based on your customer’s identity provider.
a) Supports all major identity providers through SAML and OIDC protocols, so you don’t have to worry about the idiosyncrasies of each provider.
b) Self-adjusts configuration and settings for each identity provider. For example, Single Sign-On URL for Okta, Metadata URL for Microsoft Azure AD, and ACS URL for Google.
c) Includes latest SSO documentation, step-by-step guides, and screenshots for each major identity provider, reducing the burden on your development and support teams.
- Test SSO Connections: Developers and customer support engineers often spend considerable time troubleshooting SSO-related configuration issues. To reduce overhead for your teams, the Admin Portal includes a “Test Connection” feature. IT admins can now independently configure and test SSO connections, with troubleshooting tips provided for any issues encountered, ensuring successful SSO configuration.
- Metadata URL based configuration: Modern identity providers support metadata-URL SSO configuration, which speeds up the process and reduces manual errors.
a) SAML: Metadata URL-based SSO configuration allows IT admins to skip manually adding several fields of the identity providers (e.g., ACS URL, SP Entity ID). Scalekit monitors the metadata URL provided by your customers' identity providers and automatically updates security settings related to X.509 certificates, requiring no intervention from your team or your customers’ IT admins.
b) OIDC: Supports Issuer URL or OIDC Discovery URL of your customers' identity provider. Auto-detect the security configuration based on the discovery URL and apply the most secure configuration options available for the integration.
Admin Portal takes care of updating X.509 certificates, mapping user attributes, validating SAML assertions, and troubleshooting SSO connections, so you don’t have to.
Integrate Admin Portal to your Application
Depending on your preferences and UX strategies, you can integrate the Admin Portal into your application using one of the two methods:
- Setup via API
- No-code Portal
Next steps
Follow this guide to integrate Admin Portal into your application.
For any specific questions, contact us at support@scalekit.com.
