...
Important Note: The OnePACS SAML Integration does not currently support user provisioning; however, this feature is planned for a future release.
✅ Preconditions for SAML SSO Integration
Before configuring SAML Single Sign-On, ensure the following preconditions are met:
- Your Identity Provider (IdP) supports custom SAML attribute mappings.
(e.g., Okta, Azure AD, ADFS, etc.) - A custom SAML attribute named
usernameis configured in your IdP.- Name/FriendlyName:
username - Value: The user's login identifier (e.g., corporate username or email)
- Name/FriendlyName:
- The
usernameattribute is included in the<AttributeStatement>of all successful SAML assertions. - The IdP username (in the OnePACS application) must match the value passed back from this username attribute.
- You have access to modify attribute/claim mappings in your IdP’s SAML configuration.
📝 Setup Requirements
To configure SSO for your organization, you’ll need to provide the following:
...
Add or edit an existing user. Expand Identity Providers at the bottom left of the screen. Select the Identity Provider previously configured, along with the username from the IdP server associated with the particular OnePacs user being updated.
**The IdP username must match the value passed back from this username attribute.
Important Note: Admins are required to create users or assign existing users to Identity Providers (IdPs) for users to authenticate.
...