Ideagen Luminate logo Ideagen Luminate logo
Navigation
Need help?
Send feedback
Sign in
This page does not meet FedRAMP security standards. Please avoid entering sensitive or classified information. Learn more
Learn more
Learn more

Looking for help?

Common queries

View all

Send us feedback

Megaphone illustration

Before you start

This form is for Ideagen Luminate feedback only. Your submission will not receive a response.

Looking for support? Select the solution you need help with and open a ticket with us.
New article Recently updated

Ideagen Policy Logic IdP | Checking SSO security groups that are being sent to Ideagen Policy Logic using IdP test

By Otis Stevenson
  • Last updated
⌘ K
Search this article
Print this article

To access Ideagen Policy Logic products with Single Sign-On, all products except CompliLearn require security groups.

If a member of your staff cannot login to a site, you can determine in a few easy steps if they have been correctly added to relevant security group. Sometimes they may have been added, but the security group is not sending to us. You can also use this test to determine what level of permissions the user has been granted.

You may not need to contact us if the affected user performs this test and informs you of the result. Often the outcome is your internal IT support will need to be contacted to add the affected user to the correct SSO security group. 

Note for Safe Excursions customers: If they already have a PlanCheckGo or SafeTripBuilder security group on their account, you'll need to have them removed from that group and added to the correct group.

Note: We do not support nested groups. If IT have added the person into the group and it is not coming through on the IdP test, the group might have been created nested within another group.

1. Performing the IdP test

1) Find the IdP link of the Ideagen Policy Logic site - see the below additional steps

2) Add /profile to the end of the IdP link

3) Send the link to the affected user and ask them to login 

4) Ask the person to screenshot the result clearly 

5) If you do not see the correct SSO security group for the product, your internal IT support will need to add the person to that group. See here for a list of the security groups. 

2. Finding the IdP link

1) Open an incognito window

2) Paste the website URL into this window

3) Click the login button

4) Wait until the page starts to redirect to an SSO screen

5) Quickly copy the URL of the page 

6) Click the back button on your browser if you do not copy the IdP URL in time before it fully loads to the SSO screen (I do this in the video)

7) Send the URL to the affected user with /profile on the end 

3. Getting the results from the IdP test

The results from the affected user will look something like the below.

IdPTest.png

What do you think about this article?

Your feedback helps us improve

More articles in this section

Looking for more help? Ask the Community

On this page