Enhanced Alternate User Name Configuration for SSO/OAuth

We are making significant improvements to the Alternate User Name functionality in WMS to deliver more flexible and seamless Single Sign-On (SSO) and OAuth integration with external Identity Providers (IDPs). These enhancements improve integration with diverse IDPs, simplify management, and future-proof your WMS authentication configuration against changing business needs.

How Will This Affect Me?

• The Custom Authentication configuration is now based on Auth Providers (such as Identity Provider, Identity Domain, or Auth Provider), not domain names.
• You'll now select an Auth Provider when adding an alternate user name, ensuring every mapping is explicit, flexible, and accurately reflects your IDP setup.
• Enhanced mappings ensure that authentication OAuth flows use precise, user-level configuration, reducing confusion and supporting non-email-based credentials.

Important Callouts:

• No new restrictions are being added. Current restrictions remain:
  • You cannot delete an Auth Provider that is in use by any user.
  • You cannot create duplicate Auth Providers.
  • Alternate user names require an application name to be populated.
  • SSO use cases that require an empty domain for alternate username addition (with domain.com) remain unchanged.

Steps to Enable and Configure

You don't need to do anything to enable this feature.