SAML Settings

Thinfinity® Workspace authentication can also be integrated with ID providers using SAML or Security Assertion Markup Language, which is also an open standard for SSO that allows identity providers to pass authorization credentials to service providers. SAML enables users to log in once and access multiple related but independent systems without the need to re-enter their credentials for each one.

To access SAML configuration settings, navigate to Configuration Manager>Authentication>Methods, click Add and select SAML. Next, double click the method or select it and click Edit.

Option

Description

Name

This field is completed by default with the name of the authentication method. Edit if applicable.

Virtual Path

Virtual Path to the authentication method service. This field is completed by default with the name of the selected authentication method.

2FA Method

The associated 2FA method.

Service Identifier

URI of the Thinfinity Workspace installation (the computer where it is installed).

Service Certificate File

Path to the Thinfinity Workspace certificate file. Can be a self-signed certificate.

Service Certificate Password

Password for the service certificate file.

Identification Entity ID

The application ID provided by the identity service provider (e.g.: Okta).

Sign Authentication Request

Indicate whether Thinfinity Workspace should digitally sign the SAML authentication request it sends to the Identity Provider IdP during login.

Single Sign-On Service URL

URL of the SSO Identity Provider.

Sign-Out URL

The URL to which users are redirected upon logging out of Thinfinity Workspace (optional).

Partner Certificate File

File Path for X.509 Certificate Provided by the identity service provider (e.g.: Okta).

For details on how to configure Single Sign-On for all the identity providers supported in Thinfinity Workspace, see the Authentication section in our Knowledge Base.

PreviousRADIUS Settings NextOAuth 2.0 Settings

Last updated 16 days ago

Was this helpful?