Before you Create a Login Policy

To create a new SAML or OpenID login policy, you must sign in to the instance using the URL you want to use for integration with your Identity Provider.

Note: Typically, the default Internal login policy is included in the data that is loaded into an instance during its creation. We do recommend to always keep several admin users assigned with the user type referenced to the default Internal policy to access the instance in the event of issues with SSO or for creating or modifying login policies.

Next, configure the login policy settings and set up an application in your Identity Provider:

• For SAML, download the OFS metadata.xml file which contains the URL that you must use to access the instance. Use this file to configure the application in your Identity Provider.
• For OpenID, copy the OFS linkback URL and paste it into Redirect URL when you configure the application in your Identity Provider.

  You must use the URLs within the etadirect.com domain zone only for the instances that are provisioned before June 2021.