🔓Set Up SSO (Single Sign On) through OpenID Connect with any Identity Provider

amberSearch supports Single Sign-On (SSO) via any Identity Provider (IDP) that implements the OpenID Connect (OIDC) protocol. This manual provides detailed instructions on configuring amberSearch to authenticate users through your chosen IDP.

Step 1: Create a new client for amberSearch in your IDP

Provide the following values to amberSearch.

1. Client ID: The identifier assigned to amberSearch by your IDP.
2. Client Secret: The secret key associated with your Client ID.

Step 2: Gather IDP Information

Before configuration, obtain the following details from your IDP. Alternatively, provide the openid-configuration file URL to amberSearch (typically https://your-idp/.well-known/openid-configuration)

1. Issuer URL: The base URL for your IDP’s OIDC configuration.

2. Authorization Endpoint: URL where authentication requests are sent.

3. Token Endpoint: URL where tokens are exchanged.

4. Userinfo Endpoint: URL to fetch user profile information.

5. Redirect URI: This value will be provided by amberSearch.

6. Scopes: Typically, openid profile email

Step 3: Test the Login Flow

For testing purposes, create and provide an external user account to amberSearch. Get in touch with your Customer Success Manager for further details here.