cancel
Showing results for 
Search instead for 
Did you mean: 

steps needed to set up SSO for decipher login

manavSingla
Level 3
For SSO setup in Decipher 2.1, What will go In SAML URL field.
Also I want to know about Master Username and Master Password As Any username and any password can be set in configuration .


------------------------------
manav Singla
------------------------------
12 REPLIES 12

PabloSarabia
Level 11
Hi @manav Singla,

Here you have the documentation about the Single Sign-on authentication. Also have more documentation about the other configurations


https://bpdocs.blueprism.com/decipher-2-1/en-us/user-guide/configuration.htm?Highlight=saml



Hope this helps you, see you in the community.

Bye 🙂

------------------------------
Pablo Sarabia
Architect
Altamira Assets Management
Madrid
------------------------------

Hi Pablo,

I had already referred to this documentation ,But I am still confused about SAML URL and from where to generate  this.

Thanks,
Manav

------------------------------
manav Singla
------------------------------

For the moment, we are stuck in the same step.
According to the Identity and Access MGMT colleagues, they need to get XML files about the application (Decipher) in order to complete/prepare setup in Active Directory / Azure AD.
Master user and Master pwd is a same mystery - currently pending official BP support response on wherefrom and how fetch/set these master records.

------------------------------
Lukas Ramasauskas
RPA Software Engineer
Swedbank AB
Europe/Vilnius
------------------------------

Hi Lukas,

Decipher does not currently support Active Directory (AD) integration as a form of single sign on. The other users in this post are discussing single sign on using a SAML authentication method, which is not the same thing as Active Directory management.

We are working on AD integration and it will be available in a future version.

If you need support setting up SAML authentication, please raise a support ticket and we'll be more than happy to assist.

Thanks

------------------------------
Ben Lyons
Senior Product Specialist - Decipher
Blue Prism
UK based
------------------------------
Ben Lyons
Principal Product Specialist - Decipher
SS&C Blue Prism
UK based

Hi Ben,

You're talking about "a future version" for AD integration. We rely heavily on the information on the roadmap that AD integration comes with Decipher 2.2. Our IT Security won't let us go into production with Decipher if we do not get AD integration up and running.

Can you please confirm that this is still planned for 2.2 and due to be released end of May 2022?

Best regards

Til



------------------------------
Til Minet
RPA Developer
EWE AG Germany
Oldenburg
------------------------------

Hi @Til Minet,

That's still the plan. We're just about to start QA, so we can't 100% confirm any features until this work is complete.

We of course want to ensure that the update meets our strict quality and security standards​.

Thanks

------------------------------
Ben Lyons
Senior Product Specialist - Decipher
Blue Prism
UK based
------------------------------
Ben Lyons
Principal Product Specialist - Decipher
SS&C Blue Prism
UK based

Hi,

Yes, we have a ticket open but looks like the BP support has not enough support from Decipher developers.

We performed wider investigation, and identified that application (Decipher) is not sending proper or at all any SAML request towards authentication site (in our case that's Azure AD); and moreover we have tired the reverse test - by providing the token back to Decipher from Azure AD with SAML SSO details, and Decipher is not accepting it (looks like Decipher endpoint URL is not processing SAML response). Looks like the mechanisms to send and accept SAML tokens in Decipher are not working or needs advanced configuration (but no details are provided by BP how to setup it as it may be underlying Web.config in Decipher Web Server installation). We tried many ways to guess and brute force proper config - unfortunately no luck.

Current state: waiting for Decipher IDP v2.2 release where integration with ActiveDir is promised (and fingers crossed that it will actually work and not like SAML SSO "integration").

//BR
//Lukas R.

------------------------------
Lukas Ramasauskas
RPA Software Engineer
Swedbank AB
Europe/Vilnius
------------------------------

Hi @LukasRamasauskas,

​Decipher 2.1 does not support Active Directory integration via SAML or any other authentication mechanism. Decipher 2.2 is planned to have this functionality. It will afford users to connect it to their AD platform for access and password management.

SAML is an authentication mechanism which simplifies user authentication and supports a single sign on facility, here's some additional information from one of the many SAML platform providers https://www.onelogin.com/learn/saml

We appreciate this was not made as clear as it could be in the product documentation and we are looking to update our online help to better reflect this functionality.

Thanks

------------------------------
Ben Lyons
Senior Product Specialist - Decipher
Blue Prism
UK based
------------------------------
Ben Lyons
Principal Product Specialist - Decipher
SS&C Blue Prism
UK based

Hi @Ben.Lyons1,

Thanks for your reply! Can you give a rough estimate how long QA is supposed to take and what your ETA for 2.2 is?

Best regardfs
Til​​

------------------------------
Til Minet
RPA Developer
EWE AG Germany
Oldenburg
------------------------------