The LMS is designed to work with most SAML v2.0 Identity Providers. However, since every identity provider (IdP) is different we can only outline the broad steps to integrate the LMS with a third-party IdP. Using these steps, along with the IdP’s documentation, should enable you to configure the integration.
In this step, you'll provide the LMS with the SAML Identity provider values it needs to communicate with with your IdP.
Copy values from the IdP and paste them into the Identity Provider Details section of the LMS —
Entity ID / Issuer URL, SAML 2.0 Endpoint / SSO URL, and X.509 Certificate are all required.
Not all IdP's support SLO Endpoint / Logout URL - if your IdP does not have a Single Logout option you can leave this blank.
Futhermore, if you wish for users to only be signed out of the LMS and not your IdP when they logout, you can leave this field blank.
In this step, we’ll define the service provider values that the IdP will need to identify the LMS.
In this step, we’ll define the information about the user (id, email address, first name, last name) that need to be passed to the LMS.
Minimally the LMS requires that uuid and emailAddress be passed as attributes, however it is recommended to pass all four
values listed below if possible.
| Field Name | > | Value |
|---|---|---|
| uuid | > | Unique User ID |
| emailAddress | > | |
| firstName | > | First Name |
| lastName | > | Last Name |
Note: Even though the IdP may provide additional user data that can be passed as parameters, only the paramters listed above are compatible with the LMS; all other values will be ignored.
In the LMS, on the Add A New Integration screen, finish configuring the User Login settings and then click Save
to save the integration in the LMS.
You have now completed the basic steps needed to configure the LMS in your IdP. Please refer to your IdP's documentation for any additional
steps you may need to undertake in order to complete and enable the integration.