SSO Configuration for SXP Employee
First published on: 10/03/2025/11:42 am
Office 365
To configure Single Sign on with Office 365 for SXP Employee it is first necessary to register an Application in Azure Active Directory and obtain the following details:
- Client ID
- Tenant ID
- Client Secret
Once the above details have been obtained, navigate to SXP Employee Admin App and under the "Employee Platform Config" choose the "Single Sign On" option:
.png?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9kemY4dnF2MjRlcWhnLmNsb3VkZnJvbnQubmV0L3VzZXJmaWxlcy8zODI4MS80ODk1MS9ja2ZpbmRlci9pbWFnZXMvcXUvMjAyNS9pbWFnZSgzODQpLnBuZyIsIkNvbmRpdGlvbiI6eyJEYXRlTGVzc1RoYW4iOnsiQVdTOkVwb2NoVGltZSI6MTc3MjU1MTkzOH19fV19&Signature=RcoYG1hiR8zVgMqKRZOf5KiivHmIUXu5Wx5Llj67~2bN1rl7ebu4SGv1e7DvLcsGPvH8LWIQ-9V0qa3FEa9a3T5XjM604QlzSFm40ce63gpe4~lJJjeFHZGJHR8efFMjCOW2WXIdVY~m2wEY9IQRS0cm3VJ1-aF05p6o4XMfQJR9LHFS8~lepWvcjfXBs8gyOe0rDTiVa5GYb1n3OXbJZjjjzoBd2H0s40pyjTt4EWNkZ88r6ucofh39YIe~w76puMfabkK5CB2-E6hQ2dE2pU56dDzIRNhHwFCOg4mfcP1x7T8dVlK18g0BzxWPF6wiotZ1DbM4v2fXEcSrtfsBiw__&Key-Pair-Id=K2TK3EG287XSFC)
Select "Office365" for IDP type and enter the Client ID, Tenant ID and Client secret obtained from registering a new application in Azure Active Directory.
The following settings should not be modified:
- Microsoft Authorization URL
- Scope
Remaining settings should be configured as follows:
- Direct Login - Check this to enable SSO
- Portal Login URL - Set this to https://{0}/login/Login.aspx where {0} is replaced by your SXP root application URL
- Logout URL - This can be optionally set to the logout URL for Office 365
Once all settings are saved Refresh the SXP settings from "Base Config" -> "Refresh Portal Settings" option and logout of SXP.
OKTA
To configure Single Sign on with OKTA for SXP Employee it is first necessary to register an Application in OKTA using OpenID as the sign in method and obtain the following details:
- Saml Certificate
- Okta Authorization URL
- RSA Keys URL (if required)
Once the above details have been obtained, navigate to SXP Employee Admin App and under the "Employee Platform Config" choose the "Single Sign On" option:
.png?Policy=eyJTdGF0ZW1lbnQiOlt7IlJlc291cmNlIjoiaHR0cHM6Ly9kemY4dnF2MjRlcWhnLmNsb3VkZnJvbnQubmV0L3VzZXJmaWxlcy8zODI4MS80ODk1MS9ja2ZpbmRlci9pbWFnZXMvcXUvMjAyNS9pbWFnZSgzODUpLnBuZyIsIkNvbmRpdGlvbiI6eyJEYXRlTGVzc1RoYW4iOnsiQVdTOkVwb2NoVGltZSI6MTc3MjU1MTkzOH19fV19&Signature=Afz-~6JCVZoYYpOKWSMXMZc5w0S3G8xyeJ~1XxFXtj3-ACq-4z8DIZ~2-V0Ncf0s4hWYgHVMYQWfP3nqjGz1XnOOOxmuFUJQpndIT8eOFejcFV00vIZpFxRkod5taUNADoIhZlrdHLmfEkXc13YzPSq2mL2r7VfsNP40WWljA8Hc2vsAG~Zp2YX-l0Z2LU-xhcujw~XE68MA9YQfpa0x7xmp8fJGh0MBV4YVLZu6julGQeGjtjhi3gGRbzgv8JvAgiUp4sgZ-ELfJwEts0jRI04U2uL7RMfoA1g-Z1GtpDCCfX2URve9EKqPI~ppTK0HyoJLONDHBsRuIvxJOBfyFA__&Key-Pair-Id=K2TK3EG287XSFC)
Select "OKTA" for IDP type and enter the Saml Certificate, Okta Authorization URL and RSA Keys URL (if applicatble) obtained from registering a new application in OKTA.
Remaining settings should be configured as follows:
- Enable SSO - Check this to enable SSO
- Client Okta URL - Set to your organizations OKTA URL
- Portal Redirect URL - Set this to https://{0}/login/Login.aspx where {0} is replaced by your SXP root application URL
- After Logout URL - This can be optionally set to the logout URL for Okta
Previous
|
Last modified: 10/03/2025/2:05 pm |