Community
Select to view content in your preferred language

ArcGIS Enterprise SSO

376
1
12-04-2023 08:30 AM
FeelingMappy
by
Emerging Contributor
‎12-04-2023 08:30 AM

Hello, I have integrated my AD with enterprise successfully and achieved SSO by disabling anonymous access. This however does remove the option for a named user outside my organisation to sign-in.

Is this behavior expected? I was hoping for SSO for my internal organisation users, and the normal named user sign-in for users outside the organisation.

Thanks!

Tags (2)
0 Kudos
1 Reply
Scott_Tansley
by MVP Regular Contributor
MVP Regular Contributor
‎12-04-2023 03:37 PM

Most organisations use SAML2 rather than IWA for that sort of use case. 

You cannot have anonymous and IWA in place at the same time.  It's self-defeating from a security perspective.  So, if you use IWA then all users will be challenged for a login, and you would need to provision an AD account for your external users.

 

Scott Tansley
https://www.linkedin.com/in/scotttansley/
0 Kudos