Skip to main content

Configure OIDC

Note

You can only have one SSO provider type enabled at a time.

CPM_OIDC.png
Table 29. OIDC Configuration Settings

Field

Description

Provider name

The login provider name.

Client ID

The unique identifier assigned to an application by the identity provider (IdP).

Authority

The URL of the IdP.

Enable/Disable toggle

Enables or disables the login provider. If disabled, the button will not show on the login page.

Claim mappings:

The expected claims sent by the identity provider (IdP)  are:

  • email

  • given_name

  • family_name

If the IdP uses different claim types, remap them here.



Claim mappings

Any configured identity provider must provide the following three claims:

  • email, containing the user’s email address

  • given_name, containing the user’s given name

  • family_name, containing the user’s family name

If the identity provider uses different claim types, a custom mapping can be configured via the UI.

Redirect URLs

Once ODIC is configured, the last step is to add the redirect URLs to your identity provider. The companyShortName is a unique identifier for your tenant inside our systems. It can be found in the URLs provided to you for Process Designer or Process Navigator.

For example, the URLs for a company called Celonis would be:

  • in Process Designer: https://symbioweb.com/celonis/demoStorage

  • in Process Navigator: https://navigator.symbio.cloud/celonis

Region

URLs

West Europe

Sign-in redirect URL: https://auth.symbio.cloud/signin-companyShortName-oidc

Logout redirect URL: https://auth.symbio.cloud/signout-&companyShortName-oidc

East US

Sign-in redirect URL: https://auth.us-1.symbio.cloud/signin-companyShortName-oidc

Logout redirect URL: https://auth.us-1.symbio.cloud/signout-companyShortName-oidc

Japan

Sign-in redirect URL: https://auth.jp-1.symbio.cloud/signin-companyShortName-oidc

Logout redirect URL: https://auth.jp-1.symbio.cloud/signout-companyShortName-oidc