Certified SAML SSO identity providers (IdPs)
This page applies to:MindTouch (current)
This article provides guidance in what to look for in an IdP to authenticate MindTouch via SAML single sign-on (SSO) and lists supported IdPs regularly tested.
What to look for in an IdP
Here are some things you should look for when choosing an IdP:
- For usernames: Ability to send a persistent ID with a name-id format that is human readable (e.g. firstnamelastinitial, email address prefix, email address, etc.)
- For group syncing: Ability to send over a list of groups in a singular list separated by a specific delimiter (e.g. a comma-separated list). These should not be sent as separate XML nodes for each group name.
- For IdP configuration: Use of a single-IdP setup. Industry best practices dictate that an SP should only be configured to a single IdP.
Tested and supported IdPs
Below is a list of certified identity providers (IdPs) MindTouch regularly tests and supports to enable SAML single sign-on (SSO):
|
|
Set up SAML SSO with Microsoft Active Directory Federated Services (ADFS) 2.0+ |
|
|
