MultiSSO not working with Domain Separated Instance

CharanjeetSingh · ‎10-03-2024

Hello Folks,

I am trying to enable Multi SSO on a domain separated instance it was not showing the login options on the login page. After backtracking I found one script include `MultiSSO_OidcUtil` with below comments. Anyone have idea how I can enable SSO with multitenant instance.

This method will fetch all the Active OIDC IDP records which are configured to show on Login page

If MultiSSO is Active MSP (Domain Separation) plugin is not active.

Currently showing the login options with OIDC IDP records only supported for Non MSP instances.

// If MultiSSO is Active and MSP (Domain Separation) Plugin is NOT active then,

// Query the Active OIDC IDP Records which are configured to be shown on login Screen.

Mathina · ‎11-25-2024

Hi Charan,

Above mentioned script include is high priority code , we couldnt edit and servicenow support also not encourage to edit because it might cause performance issue. So you can show login option in Page which we get when click "Login with SSO" .Refer the below screenshot. This can be acheive by adding buttons using a link in UI Pages (login_locate_sso ) as below code:

Note: You should provide the correct sys ID "login_with_sso.do?glide_sso_id= <Use your Oidc\saml Identity Provider's sysid>"

<a href="login_with_sso.do?glide_sso_id= <Use your Oidc\saml Identity Provider's sysid>" onmouseover="this.style.color='white'; this.style.backgroundColor='orange';" onmouseout="this.style.color='blue'; this.style.backgroundColor='transparent';" ><span style="text-decoration: none;position: relative;display: inline-block;width: 100%;font-size: 14px;border: 1px solid #b3bac7;border-radius: 3px;cursor:pointer;text-align: center;line-height: 30px;margin-top: 9px;">Log in with Orange Connect </a>

<a href="login_with_sso.do?glide_sso_id= <Use your Oidc\saml Identity Provider's sysid>" onmouseover="this.style.color='white'; this.style.backgroundColor='orange';" onmouseout="this.style.color='blue'; this.style.backgroundColor='transparent';"><span style="text-decoration: none;position: relative;display: inline-block;width: 100%;font-size: 14px;border: 1px solid #b3bac7;border-radius: 3px;cursor:pointer;text-align: center;line-height: 30px;margin-top: 9px;">Log in with okta sso test </a></b

This can be acheive by adding buttons using a link in UI Pages (login_locate_sso ) as below code:

Note: You should provide the correct sys ID "login_with_sso.do?glide_sso_id= <Use your Oidc\saml Identity Provider's sysid>" . This Link will fetch the record from mentioned OIDC\SAML Identity Provider in the sysID.

<a href="login_with_sso.do?glide_sso_id= <Use your Oidc\saml Identity Provider's sysid>" onmouseover="this.style.color='white'; this.style.backgroundColor='orange';" onmouseout="this.style.color='blue'; this.style.backgroundColor='transparent';" ><span style="text-decoration: none;position: relative;display: inline-block;width: 100%;font-size: 14px;border: 1px solid #b3bac7;border-radius: 3px;cursor:pointer;text-align: center;line-height: 30px;margin-top: 9px;">Log in with Orange Connect </a>

<a href="login_with_sso.do?glide_sso_id= <Use your Oidc\saml Identity Provider's sysid>" onmouseover="this.style.color='white'; this.style.backgroundColor='orange';" onmouseout="this.style.color='blue'; this.style.backgroundColor='transparent';"><span style="text-decoration: none;position: relative;display: inline-block;width: 100%;font-size: 14px;border: 1px solid #b3bac7;border-radius: 3px;cursor:pointer;text-align: center;line-height: 30px;margin-top: 9px;">Log in with okta sso test </a></b

View solution in original post

Mathina · ‎11-25-2024