Rally: Users seeing Rally login page accessing https://rally1.rallydev.com instead of SSO login
search cancel

Rally: Users seeing Rally login page accessing https://rally1.rallydev.com instead of SSO login

book

Article ID: 202175

calendar_today

Updated On:

Products

Rally SaaS

Issue/Introduction

When accessing https://rally1.rallydev.com users are sent to a Rally login page.

Environment

Release : SAAS

Component : AGILE CENTRAL

Resolution

If you visit https://rally1.rallydev.com and you are not currently authenticated to the application, it will show you our Rally login screen.  This is so that it's still possible for subscription administrators and "exceptions users" to log into the application using Rally credentials instead of SSO.

If a normal SSO user (*not a Rally Subscription Administrator) were to enter their username in the Username field, it would redirect them to your SSO login page.   (SSO redirect in the Rally Subscription is only available when using "SSO authentication with exceptions" or "SSO authentication" Authentication type.)

Rally subscription administrators do have a slightly different behavior than normal users and they are able to log in with SSO or Rally credentials so that they can manage the subscription even if SSO is unavailable.

Ultimately, SSO users should be accessing the application via their IdP initiated URL (provided by your SSO admin) or an SP initiated URL (provided by Rally).

What some customers will do is set up a site internally that hosts a redirect page to the above url.  So for example they might have a page like https://intranet.company.com/sso/rally

The default page on the URL above would have a page that simply contains a redirect to the SSO URL above.  This way users have a simple page to bookmark or access and if the SSO URL changes for any reason, it's an update to a page on that redirect page on your intranet and everyone is automatically redirected to the new SSO page.