Single sign-on (SSO) setup consists of several steps. Usually, SSO is set up during Acquia DAM implementation.
Step 1: Check whether SSO is turned on for your site. First, go to the Admin app and select Global Settings then Features. Go to Manage Users in the features list.
The user clicks the SSO login button, which performs a 302-redirect back to the identity provider to authenticate. The user will either have an existing browser session with the identity provider or create a new browser session by logging in to the identity provider.
The identity provider then builds the SAML response in the form of an XML document that contains the user’s email address or username along with other supported attributes. This SAML response is signed using an X.509 certificate and the response is then posted back to the DAM.
The DAM verifies the response with the identity provider using a public certificate you’ve uploaded to the site.
The identity of the user is verified by the DAM and the user account is created using just in time provisioning or the existing user is logged in to the DAM.
Note that IdP-initiated logins are similar but instead, the user would click on a DAM link within your portal or intranet.
If this content did not answer your questions, try searching or contacting our support team for further assistance.
Tue Apr 29 2025 10:18:39 GMT+0000 (Coordinated Universal Time)