Note: These requirements are for using SSO to log in to CourseCloud, OpenSesame's limited-access content delivery platform. For the other SSO options—course launch or marketplace login—see OpenSesame's single sign-on (SSO) options.
CourseCloud supports the use of SAML single sign-on for logging in. If you have a subset of users who cannot use SSO, then SSO is not an option, as CourseCloud does not support mixed login methods.
When you use SSO with CourseCloud, a user can access CourseCloud only if:
- A SAML SSO connection exists between one SAML SSO identity provider (IdP) of your choice and OpenSesame.
- The user exists in that IdP.
- The user has a unique email address.
- The user exists in CourseCloud.
CourseCloud can support one IdP per organization. If your organization has more than one:
- Choose one IdP to connect with OpenSesame.
- Ensure that all learners can be added as users in that IdP.
Whichever IdP you use, ask your IT team to confirm that it meets the following requirements:
- It supports SAML 2.0 authentication.
- It supports Service Provider Initiated (SP-initiated) authentication and can disable Identity Provider Initiated (IdP-initiated) authentication per application.
- It can supply the following custom SAML attributes, to be sent in SAML responses:
- A unique and persistent studentID attribute (must be a unique email address).
- A first and last name attribute (optional; necessary to use the reporting available in OpenSesame).
For a user to access CourseCloud, they must exist in both your SAML SSO IdP and CourseCloud. Logging in to your IdP is how their access is validated.
For help, contact OpenSesame Support at support@opensesame.com, use live chat, or call (503) 808-1268, ext. 2 (U.S.) or +44 203 744 5541 (Europe).
Comments
0 comments
Article is closed for comments.