Versions Compared

Old Version 13

changes.mady.by.user Amna

Saved on

compared with

New Version 14

changes.mady.by.user Amna

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

What is federated identity?
Federated Identity gives customers the option to use their own familiar company credentials to sign into CSI software and website instead of using their CSI sign-in credentials. This is sometimes referred to as SSO (Single Sign On). To implement, the company will have to federate their identity platform (IdP) with CSI’s identity platform. Once setup, all contacts with federated email domains will automatically be redirected to their IdP for authentication.

...

Can customers who choose to setup federated identity still use the User Management Dashboard (UMD) to bulk import contacts to into the CSI databaseUser Database?
Yes, you can still import your your contacts in bulk using the UMD. When customers authenticate through a federated IdP, they will be connected based on the user's email address

Does CSI support any automated user provisioning options, such as SCIM or JIT user provisioning?
Yes, CSI supports both types of automatic user provisioning: 1) Just in Time (JIT) User Provisioning and 2) System for Cross-domain Identity Management (SCIM) User Provisioning. Both user provisioning mechanisms require a federated IdP as a prerequisite. Automated user provisioning eliminates the need for companies to manually add users to the CSI User Database. Details can be found on the Automated User Provisioning page

What happens if a new user authenticates via federated identity and does not exist in the CSI Database?
New user will receive an error message after signing in to let them know to contact their IT team. Their Customer Account Administrator(s) will have to add the user to the CSI Database via the User Management Dashboard. 

...

  1. Set up an Okta OIDC app integration
  2. Select OIDC as the Sign-in method.
  3. Select Web application as the Application type, and set the following parameters:
    1. Name of your application
    2. Sign-in Redirects URI: https://identity.csiamerica.com/login/callback
    3. Trusted Origins: https://identity.csiamerica.com
  4. Record the Client ID and Client Secret that Okta generates for your app integration.

...