Refer to Introduction to Configuring Authentication Methods before proceeding.
Implementing new users has licensing implications, contact us
to ensure you have valid licensing.
- Click the Administration cog on the navigation bar of the Management Center.
- Select Users, Roles, and Groups > Authentication Methods in the left navigation menu.
- Choose from the following options:
|NOTE:||To expand or collapse each authentication method information section, click the arrow beside the authentication method name.|
|If You Want To||Then|
|Add an authentication method||
|Edit an authentication method||
|Enable/disable an authentication method||
Click the ON/OFF toggle beside the authentication method you want to turn on or off.
NOTE: You can have multiple authentications turned on, but you must have at least one turned on.
- Complete/edit the following fields:
|Authentication Type||This field displays the authentication type Cerner and cannot be modified.|
|Method Name||Enter a unique name to identify the authentication configuration.|
This field only displays when editing an authentication method and cannot be modified.
This value is used for context-sensitive help calls and invoking an authentication method via URL. This value is generated by the application and is not configurable.
Review/edit the following fields in the ADVANCED SETTINGS area as needed:
|NOTE:||We recommend using the default values. You can click RESTORE DEFAULTS to set all of the advanced settings back to the default values.|
|Clock Skew (s)||
Enter the time difference in seconds allowed between the Server and the Identity Provider server during validation of the timestamp value.
The default value is 0 seconds.
|Expiration Time (s)||
Enter the amount of time in seconds that the timestamp is valid.
The default value is 60 seconds.
Complete/edit the fields in the PROFILE MAPPING section as needed:
|PROFILE MAPPING section||
This section lists all of the user attributes available within a user account on the Server. You can map each user profile field to the payload by entering a Claim for it. You can enter a default value for any claim that is not unique to a user by putting quotes around the value.
When you define a Cerner authentication method, some Claims are defined by default based on the Cerner integration customization code provided to you. In general, those default claims should not be modified. Refer to the uPerform for Oracle Cerner MPages Installation Guide document.
NOTE: User edits to a Claim supplied by an IDP will be overwritten by the IDP value.
NOTE: This value should remain unchanged for a specific user.
- Click Save.