| Info |
|---|
The integration services described below may require additional one-time and/or annual fees. For more information, please contact us. |
When the learning environment is integrated to your Active Directory (AD) via ADFS / SAML, it can:
...
- You must accept SAML requests from the learning environment. This means that your Identity Provider will need to allow requests from the learning environment over a secure port (HTTPS).
Domain-Based Authentication
| Info |
|---|
This feature is only available to organizations that have subscribed to the Multi-site version of the system. For more information, please contact us. |
In a /wiki/spaces/Healthcare/pages/34844303, it's quite common for the learning environment to connect to multiple Active Directory servers. In many cases, there could be conflicts between the usernames across two or more Active Directory servers. For example, there could be a user with the username "jsmith" in both Active Directory servers.
The multi-site version of the learning environment supports domain-based authentication. When enabled, the system can allow two users with the same Active Directory username (e.g. samAccountName) to login the learning environment by specifying their domain as per the screenshot below.
...
- If SAML is enabled, ALL users in the system will be required to connect via SAML. This includes your physicians, medical students, volunteers, external consultants, and so on. If some users need to connect directly in the learning environment, we recommend the LDAPS integration instead.