Note: These requirements are for using SAML SSO to log in to CourseCloud, our limited-access content delivery platform. If you don't use CourseCloud, see our SSO requirements for integrations.
CourseCloud supports the use of SAML Single Sign-On (SSO) for logging in. If you have a subset of users who cannot use SSO, then SSO is not an option, as CourseCloud does not support mixed login methods.
When you use SSO with CourseCloud, a user can only access CourseCloud if:
- A SAML SSO connection exists between one SAML SSO identity provider (IdP) of your choice and OpenSesame.
- The user exists in that IdP.
- The user has a unique email address.
- The user exists in CourseCloud.
OpenSesame can support one IdP per organization. If your organization has more than one:
- Choose one IdP to connect with OpenSesame.
- Ensure that all learners can be added as users in that IdP.
Whichever IdP you use, ask your IT team to confirm that it meets the following requirements:
- It supports SAML 2.0 authentication.
- It supports Service Provider Initiated (SP-initiated) authentication and can disable Identity Provider Initiated (IdP-initiated) authentication per application.
- It can supply the following custom SAML attributes, to be sent in SAML responses:
- A unique and persistent studentID attribute (must be a unique email address).
- A first and last name attribute (optional; necessary to use the reporting available in OpenSesame).
For a user to access CourseCloud, they must exist in both your SAML SSO IdP and CourseCloud. Logging in to your IdP is how their access is validated.
If you have further questions, our Support team is here to help via email at support@opensesame.com or via live chat and phone. Reach us at (503) 808-1268, ext. 2 (U.S.) or +44 203 744 5541 (Europe).
Comments
0 comments
Article is closed for comments.