Mapping users roles when SSO integrating with SAML 2.0 IdP
Article ID: 257543
Updated On:
Products
Email Security.cloud
Issue/Introduction
After enabling SSO, customers are unable to pass the security roles from their IDP to the client net portal.
Environment
Email Security.cloud
Cause
Federated roles mapping and federated login are not activated in the ClientNet portal.
Resolution
Enforce at login cannot be enabled until these steps are completed:
- Enable Federated login only for ClientNet.
- Enter and save a valid IdP code for this customer
- The IdP roles for this user (login name) must include Manage Users permission.
Feedback
Yes
No
Powered by
