Certica Products

How do I configure sign-in authentication options?

Updated May 03, 2021

You can configure user sign in options for users in your account from Sign-in Settings. Videri offers two account authentication methods.

Login Screen

Users log in with a username and password. First-time users must enter their institution-provided username and then enter a password to use with their account. They must then check their institution-provided email account for an account verification email. Once verified, users can log in to Videri.

You can also allow users to log in using their Gmail.

Single Sign-On

Users access Videri from a preconfigured link on an intranet website. This method bypasses the  login screen. To configure SSO for your account, you need the following information from you identity provider:

  • Client ID
  • Client Secret

Open Videri Administration Page

Open Videri Administration Page

In the Toolbar, click the Profile icon [1]. Then click the Manage organization link [2].

Open Security

In Administration Navigation click the Security link [1], or on the Videri Administration page, click the Security link [2].

Open Sign-in Settings

In the Security Management Navigation Menu, click the Sign-in Settings link [1], or on the Security Management Overview page you can click the Sign-in Settings link [2].

View Sign-in Settings

View Sign-in Settings

On the Sign-in Settings page you can manage general sign-in settings for your account.

To enable personal logins for manually created users in your account, click the Personal logins enabled toggle [1]. This option allows users to create their own password upon login. It also allows users to log in with approved social media accounts.

To specify the social media platforms available for login, click the Social logins checkbox next to the platform name [2].  Currently Videri offers support for login via Google.

To enable single sign-on for your account, click the SSO enabled toggle [3]. This option requires users to log in using your institution's identity authorization provider. You can also specify account SSO options for individual users whose accounts were created manually.

Configure SSO

Configure SSO

To enable single sign-on for your account, you must configure your institution's SSO for Videri.

Your institution's Videri URL displays in the Redirect URL field [1]. To copy this URL, click the Copy link [2]. Then add the URL to your Identity Provider allow list.

Enter the client ID in the Client ID field [3] and the client secret in the Client secret field [4]. If you do not know this information, you can obtain it from your identity provider.

Specify the identity provider's level of access in the Scopes field [5].

Enter the OpenID Connect Provider URL in the Issuer URL field [6].

To enable SSO configuration using a discovery document, click the User discovery document toggle [7].

To specify a logout URL for your account, click the Logout URL [8].

Configure SSO without Discovery Document

Configure SSO without Discovery Document

If you turn off the Use discovery document option [1], you must provide the following information.

Authorization URL [2]: the redirect URL where users can complete authentication.

Token URL [3]: the token endpoint used to obtain an access token, ID token, and refresh token.

Jwks URL [4]: the token endpoint used to obtain an access token, ID token, and refresh token.

Save Settings

Save Settings

Click the Save changes button.

Previous Article How do I create a user management automation rule for an account?