Target audience: Workspace administrators
This article is part of the New LucidLink Single Sign-On (SSO) SAML 2.0 implementation series of articles.
Overview
Along with the new SSO implementation comes new settings for Workspace administrators to choose the authentication method desired for their Workspace overall- including any and all filespaces configured in that Workspace.
Requirements
-
- Organization email domain configured and verified in the LucidLink Webportal for your Workspace. Please use this article for the domain setup.
- SSO implementation set up with your Identity Provider.
Authentication Settings
As you will see in the Webportal and in the screen capture below, you now have 4 options to choose from when you have SSO configured for your Workspace:
Below, we will list those options.
-
Disabled - Workspace members will be able to authenticate using only email and password.
(Users can not connect using SSO.)
-
Optional for anyone in my organization - Members with your organization's email domain can authenticate using SSO or email and password
-
Required for anyone in my organization - All members with your organization's email domain will have to authenticate using SSO.
-
Required for all members - All workspace members, regardless of their email domain, will have to authenticate using SSO.
Users can only connect using SSO.
When choosing "Required for anyone in my organization", you'll be presented with a verification window to ensure you understand the requirements and that you can successfully log in using SSO. Confirm this by checking the box at the bottom of the window, then click "Yes, apply" to proceed.
A similar dialog appears if you select the "Required for all members option".
Check the box at the bottom of the window, then click "Yes, apply" to proceed:
You are now ready to provide the SSO Key to your users and allow them to connect to your filespace(s) using SSO.