Announcing the Saviynt Knowledge Exchange unifying the Saviynt forums, documentation, training,
and more in a single search tool across platforms. Read the announcement here.
This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

AuthenticationConfig.groovy file values

Former Member
Not applicable

‎10/18/2022 11:11 AM

Hello all,

We are attempting to set up AzureAD SSO on v2021, with a Single IDP set up. We are referencing the documentation here - https://saviynt.freshdesk.com/support/solutions/articles/43000661162-saml-metadata-files#SAMLMetadat....

There are 2 parameters that we have questions about:

a. grails.plugin.springsecurity.saml.autoCreate.active

b. grails.plugin.springsecurity.saml.autoCreate.key

These attributes suggest that - if the user successfully SSOs with AzureAd and is not found in EIC, then the user will be created in EIC. 

We do not want this behavior. If the user doesn't exist in EIC, we don't want them to be logged in. They should just go to the EIC login page or some other page (or logout for e.g.). 

Can I just comment these lines out of the config file?

 

Thanks

Labels:
0 Kudos
2 REPLIES 2

rushikeshvartak
All-Star
All-Star

‎10/18/2022 11:47 AM

mark as false instead of commenting

grails.plugin.springsecurity.saml.autoCreate.active=false

grails.plugin.springsecurity.saml.autoCreate.key='username'

 


Regards,
Rushikesh Vartak
If you find the response useful, kindly consider selecting Accept As Solution and clicking on the kudos button.
0 Kudos

Belwyn
Saviynt Employee
Saviynt Employee

‎10/18/2022 11:01 PM

 

Hi  @Former Member 

There are three option you could follow in this scenario: 

1. You could mark the parameters as false, as suggested by  @rushikeshvartak 

or you could

2. Comment it out like below

//grails.plugin.springsecurity.saml.autoCreate.active=false

//grails.plugin.springsecurity.saml.autoCreate.key='username'

or you could

3. All together remove(Delete) the parameters from the AuthenticationConfig.groovy file. Make sure to have a backup of the original file.  

Let us know if this helps,

Thanks & Regards, 
Belwyn.
Copyright © 2024 Khoros, LLC