Setup flow

This section describes the process for SSO implementation after initial SSO registration.
*The following is for reference only, as the required procedure varies depending on the application using SSO.

1. Register SSO Applications

Register the applications you wish to log into using SSO.
There are two ways to register an SSO application: by registering an empty SSO application or by registering an SSO application based on a template.

2. Configure SSO connection settings on the application (service provider)

On the SSO application (Service Provider, hereafter “SP”), configure settings to connect to the YubiOn Portal.
Please refer to the SP manual for specific settings.
For information necessary for configuration, please refer to the contents of “Get the IdP information needed for configuration at the service provider”.
If the SP has a function to upload IdP metadata, the metadata obtained from “Download Metadata” can be used.
If not, follow the guidance on the SP side to set up the IdP login URL, IdP entity ID, certificate, etc.

3. Configure connection settings with YubiOn Portal’s SSO application

Configure connection settings with the SSO application.
If you have obtained the SP metadata file, you can also use this file for the settings.

4. Assign the members who will be able to use SSO

Assign members who will be able to log into the applications using SSO.
It is also possible to assign a batch of applications to various groups of members.

5. SSO App Login

The SSO App login screen displays the applications registered for SSO.
SSO can be performed by clicking on the application.