This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SAML SSO setup

DK
New Contributor
New Contributor

‎11/08/2022 11:04 PM

Trying to configure the SAML sso, before testing the SAML sso, wanted to have access to the "/ECM/login/authsaviynt" so that this can be used as alternate login if the SAML authentication failed.

enabled "localAuthEnabled" for user, provided this while testing the "/ECM/login/authsaviynt" url getting access denied error, looks like this particular url is blocked from saviynt.

how to enable this url ? 

0 Kudos
9 REPLIES 9

Manu269
All-Star
All-Star

‎11/09/2022 12:04 AM

Can you refer following article and see if this helps : https://saviynt.freshdesk.com/support/solutions/articles/43000641546-configuring-saml-based-single-s...

Regards
Manish Kumar
If the response answered your query, please Accept As Solution and Kudos
.
0 Kudos

DK
New Contributor
New Contributor
In response to Manu269

‎11/09/2022 12:10 AM

Hi,

The instructions were followed for this setup.  But the moment SAML is enabled it will take out the current log-in approach and in case SAML fails then there should be an alternate login method to disable the SAML or to fix this issue.

0 Kudos

rushikeshvartak
All-Star
All-Star

‎11/09/2022 03:32 AM - edited ‎11/09/2022 03:34 AM

Please try following URL:

https://<saviynt instance>/ECM/login/authsaviynt

change <saviynt instance> as per your instance url.

Make sure:

1) Non SSO ID has proper SAV role

2) Run following custom query job:

Update users set localAuthEnabled=1 where username='<username>';

change <username> as per your requirement


Regards,
Rushikesh Vartak
If the response is helpful, please click Accept As Solution and kudos it.
0 Kudos

DK
New Contributor
New Contributor
In response to rushikeshvartak

‎11/09/2022 06:52 PM

Hi,

The user has already ROLE_ADMIN, hope the user dont need any other role.  If any additional role is needed, then provide the details.

0 Kudos

rushikeshvartak
All-Star
All-Star
In response to DK

‎11/12/2022 05:47 AM

Follow step 2 from above


Regards,
Rushikesh Vartak
If the response is helpful, please click Accept As Solution and kudos it.
0 Kudos

DK
New Contributor
New Contributor
In response to rushikeshvartak

‎11/14/2022 06:51 PM

Hi Rushikesh,

all the steps are followed. Still not work and getting error as below 

Access Denied

You don't have permission to access "http://<client>.saviyntcloud.com/ECM/login/authsaviynt" on this server.
Reference #18.44e6ca17.1668399837.31be5931
0 Kudos

rushikeshvartak
All-Star
All-Star
In response to DK

‎11/17/2022 01:24 PM

Try with IP Address


Regards,
Rushikesh Vartak
If the response is helpful, please click Accept As Solution and kudos it.
0 Kudos

HelmutSeidl
New Contributor
New Contributor

‎04/03/2023 01:44 AM

@DK I am wondering if this ultimately worked, as I am facing the same challenge/question. 

0 Kudos

Falcon
Saviynt Employee
Saviynt Employee
In response to HelmutSeidl

‎04/03/2023 09:20 AM

https://<saviynt-tenant>/ECM/login/authsaviynt is not available over internet / public network. Please open a freshdesk ticket to disable SSO if required. 

0 Kudos
Copyright © 2023 Khoros, LLC