Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Info

Through custom SSO, you can conveniently add the required IdPs according to your own needs. Currently, we support the common IdPs based on OpenID Connect. The following will take the well-known KeyCloak as an example to illustrate the detailed configuration.

Table of Contents
minLevel1
maxLevel6
outlinefalse
styledisc
typelist
printabletrue

...

SSO Application--Customize (OIDC)

  1. Login to your KeyCloak portal.

  2. Click Create Realm to create a realm.

...

  1. Go to https://{your_keycloak_domain}/realms/{realmname}/.well-known/openid-configuration to get URL information for CX system connection.

...

  1. In the Scope input box, you can fill in Openidopenid,profile,email.

Note
  • Scope indicates the value ​​that the

...

  • CX system is allowed to obtain from KeyCloak.

...

  • openid is required

...

  • . For other scopes you want to add, you can copy from KeyCloak > Realm > Client scopes.

  • Each scope is separated by a comma and cannot contain any space ahead of or behind the comma.

...

  1. Select the tenants that will be allowed to use this custom application for SSO login.

...

  1. If you select Allow the system administrator to use this connection, the system administrator and other tenants who do not have subdomains enabled can use this custom application.

  2. Turn on the Application and then click Save.

Single Sign-On Using

  1. Click User Avatar, and select Edit Profile > Security Setting

  2. Select KeyCloak and click Connect button.

...

  1. If you have been bound to the KeyCloak account, you can log in the platform by KeyCloak account directly.

...

Info

Note: When accessing for the first time, if you log in via the login page instead of the User Settings, you will be required to link an account once you establish a connection with a third-party application.