SAML, or Security Assertion Markup Language, enables users to access multiple web applications using one set of login credentials. SAML based Single Sign-On (SSO) is the most often requested method for user authentication within Brightspace. Since SSO is a customer managed workflow, D2L built an administrative front-end to configure, troubleshoot, and maintain it. This guide provides information on registering an identity provider without the need to engage D2L Support for assistance.
D2L's SAML implementation is certified against:
-
Azure
-
ADFS
-
Shibboleth
-
G Suite
-
WSO2
-
Okta
-
OneLogin
-
PingFederate
Additional identity providers may work with D2L's SAML implementation.
Although SAML based SSO is the most requested SSO methods offered within Brightspace, it isn't the only one. A customer may wish to proceed with one of the others (OIDC, LDAP, GUID SSO, CAS) which do not have client self-serve capabilities and still require engagement with Implementation Services.
SAML Administration
The SAML Administration tool consists of three main areas:
For new customers or any existing customer that isn’t using SAML SSO, the User interface indicates that, You have no registered SAML identity providers. The first step is to add an identity provider by clicking, Add Identity Provider.