Question

SSO - Can we Create the Contacts , users and map the users to the Roles in Creatio and user IDP only for authentication?

Sri Saranya
14:02 Oct 08, 2020

Hi Team,

 

In general when we setup the SSO , when the user logs in for the first time, it will create the contact and users in creatio. After that it will just verify if that user already exists or not , if yes, it will not create any contact or user . If no, then it will create the contact and user .

 

Now, is there a possibility where we create the contact, users and map the users to their corresponding roles and just use the IDP for authentication?

Like 1

Like

3 comments
Roman Brown
13:48 Oct 09, 2020

Dear Sri, 



Sure, it's possible. The first scenario you have mentioned is when an SSO is turned on on the website along with JIT. In this case new contact and system user will be created after successful SSO login. 



In order to implement the second scenario you need to set up SSO without JIT being enabled. 

In that case you will have to create the contact, user and assign them to roles manually. 

More information on JIT and SSO configuration in Creatio can be found in these Academy articles:

https://academy.creatio.com/documents/administration/7-16/setting-just-…

https://academy.creatio.com/documents/administration/7-16/single-sign-c…



Kind regards,

Roman 

Sri Saranya
14:07 Oct 09, 2020

Roman Brown,

Dear Roman,

 

Thank you so much on the input

 

How do you manually link the contact/user to the azure IDP account?

In JIT, the platform takes care of that. In non-JIT how do we ensure that?

M Shrikanth
13:02 Nov 10, 2020

Roman Brown,

Hi Roman. Reiterating Saranya's question above - 



In scenario 2, What is the connecting column between a User/Contact created manually and a user logging in for the first time via SSO? How does Creatio map a user logging in to a specific User/Contact?

Show all comments