Follow

Configure SSO with Cerner Authentication Method

NOTE:

Refer to Introduction to Configuring Authentication Methods before proceeding.

 

NOTE: Implementing new users has licensing implications, contact us

 to ensure you have valid licensing.
  1. Click the Administration cog on the navigation bar of the Management Center.
  2. Select Users, Roles, and Groups > Authentication Methods in the left navigation menu.
  3. Choose from the following options:
NOTE: To expand or collapse each authentication method information section, click the arrow beside the authentication method name.

 

If You Want To Then
Add an authentication method
  1. Click the drop-down arrow to the right of the Add Method action button.
  2. Select Add Cerner Method.
  3. Go to the next step.
Edit an authentication method
  1. Click EDIT beside the authentication method you want to edit.
  2. Go to the next step.
Enable/disable an authentication method

Click the ON/OFF toggle beside the authentication method you want to turn on or off.

NOTE: You can have multiple authentications turned on, but you must have at least one turned on.
  1. Complete/edit the following fields:
Field Description
Authentication Type This field displays the authentication type Cerner and cannot be modified.
Method Name Enter a unique name to identify the authentication configuration.
Method ID

This field only displays when editing an authentication method and cannot be modified.

This value is used for context-sensitive help calls and invoking an authentication method via URL. This value is generated by the application and is not configurable.
Shared Secret
  1. Click SET.
  2. Enter the secret key or phrase used to encrypt the query string.
  3. Click Save.
NOTE: A message displays indicating the Shared Secret is set. For security purposes, if you set it again the current value does not display.
  1. Review/edit the following fields in the ADVANCED SETTINGS area as needed:
NOTE: We recommend using the default values. You can click RESTORE DEFAULTS to set all of the advanced settings back to the default values.
Field Description
Clock Skew (s)

Enter the time difference in seconds allowed between the Server and the Identity Provider server during validation of the timestamp value.

The default value is 0 seconds.
Expiration Time (s)

Enter the amount of time in seconds that the timestamp is valid.

The default value is 60 seconds.
  1. Complete/edit the fields in the PROFILE MAPPING section as needed:
PROFILE MAPPING section

This section lists all of the user attributes available within a user account on the Server. You can map each user profile field to the payload by entering a Claim for it. You can enter a default value for any claim that is not unique to a user by putting quotes around the value.

When you define a Cerner authentication method, some Claims are defined by default based on the Cerner integration customization code provided to you. In general, those default claims should not be modified. Refer to the uPerform for Oracle Cerner MPages Installation Guide document.

NOTE: User edits to a Claim supplied by an IDP will be overwritten by the IDP value.

  1. Enter the name of the Claim provided by the IDP which contains the External ID value to be used.

NOTE: This value should remain unchanged for a specific user.

  1. Refer to Creating And Managing User Accounts for more information on each user profile field.
  1. Click Save.
Was this article helpful?
0 out of 0 found this helpful