Pass Through Authentication

Pass Through Authentication (PTA) lets a user go straight to the platform from an organization's web page or application, without having to log in again.

How it Works

Actions

	User...	Platform...	Your Organization's Web Service...
1.			Provides a web page or application
2.	Visits the page or application
3.	Clicks a link to go to a platform page
4.			Passes data to the platform's PTA service in the SOAP payload
5.		Receives data in the SOAP payload: Session ID (optional, but desirable) Login ID Passes data to the Authentication server
6.		Receives a success- or failure-report from the Authentication Server
7.		Redirects the user to the appropriate page.

Enabling Pass Through Authentication

1. Click Settings > Administration > Single Sign-On
2. Click the [Edit] button
3. For Single Sign-On Settings, choose Pass Through Authentication
4. Fill in the Pass Through Authentication Settings:

   Third party Authentication Service URL

   Location of the authentication service. The platform uses this URL to authenticate the USER, passing the appropriate pay load in the HTTP request.

   Success page URL

   The default page the platform sends the user to when authentication succeeds. (Can be overridden dynamically in the HTTP request.)

   Error page URL

   The page the platform sends the user to when authentication fails.
   The default destination is the platform’s Login-error page.

5. Click [Save]

Pass Through Authentication Settings