Configuring an authentication provider

The Lexmark Cloud Services website supports federation with an identity service provider (IDP) for authentication. Users can log in to the system using the credentials from their existing accounts.

Notes:

• Contact your Lexmark representative before configuring the settings. If the settings are not configured correctly, then users can be locked out from Lexmark Cloud Services.
• Before you begin, make sure that you have the correct authentication provider information, such as the SSO URLs and certificates.


1. From the Account Management web portal, click Organization > Authentication Provider.



2. Click Configure an Authentication Provider, and then add the domains.



3. Configure the single sign‑on settings.

   • Service provider entity ID—The base URI of the IDP of the organization that the Lexmark Cloud Services website can access.
   • SSO target URL—The single sign-on (SSO) login URL of the IDP Active Directory Federation Services (ADFS) of the organization.
   • SSO Logout URL—The SSO logout URL of the IDP ADFS of the organization.
   • SSO name identifier format—The name ID of the IDP ADFS of the organization.
   • Certificate—A signed certificate from the IDP ADFS of the organization. The certificate is required so that the Lexmark Cloud Services website can determine if it is communicating with the IDP ADFS.


4. Click Configure Authentication Provider.

Note:  For more information on federating a CIAM organization, contact the Lexmark Professional Services team.