Auto-provision users via SSO using SAML 2.0

Forum|Forum|9 years ago
June 7, 2016
12 replies
1843 views

According to this bit of informaiton (https://support.workfront.com/hc/en-us/articles/217194907) you can set SSO to auto-provision new users if they exist in your LDAP but not in Workfront. My questions are: Is anyone using this and what has been your experience? Pros/cons? What attribute does it check to see if the user exists or not? I'm assuming the Federation ID but I cannot confirm that anywhere in Help, anyway. Thanks! :)

Workfront

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

Show previous replies

E

EricLu2

Level 10

Since posting my comment below, I see another post by someone who has it figured out. Ahhh, very nice. Eric

P

PeggySe1Author

Level 2

Responding my own thread here. :) We just (finally!) turned on auto-provision! We only map first and last names, and the email address of the user. It does set the user with a Request license, Requestor access level. I have a daily report of any new people with Requestor access level, and manually change them to Reviewer and put them in appropriate groups. This seemed the easiest why to do this and not overwrite an existing user's access level.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded