Set up an approval from a SAML 2.0 authentication

Setting up e-signature with SAML 2.0 requires configuration on the identity provider and the instance.

About this task

The SAML Identity Provider (IdP) must support and honor the forceAuthn attribute in SAML Assertion Requests. E-signature does not function without this IdP setting.

To set up Approval with e-signature using credentials from a SAML 2.0 authentication:

Procedure

  1. Activate or upgrade to a SAML 2.0 Update 1 integration.
  2. Activate the Approval with E-Signature plugin.
  3. Enter the e-signature SAML properties.
  4. Regenerate the service provider metadata and update it on the IdP.
  5. Create user records for approval users.
    Note: Customers on SAML 2.0 Update 1 no longer have to create custom UI pages for logging out the user or deleting session cookies.
    Note: If you are a Life Science Customer using E-Signature, you must deactivate the User self-lockout prevention business rule. See KB0547061 for more information.