SAML Single Sign On
This guide covers using SAML, an XML-based open standard for transferring identity data between two parties: an identity provider (IdP) and a service provider (SP) and will be used for signing users into OpenLearning.
Pre-requisite
- This integration is only available to education providers who have an Institution Plan subscription with OpenLearning.
- The following information needs to be provided by the IdP (Identity Provider), e.g. a university or other sign-on provider:
- Entity ID/Issuer URL (required)
- Sign-In URL (required)
- Certificate (required)
Setting up SAML SSO on OpenLearning
Step 1
Under Institution Settings > Integration scroll down to SAML Identity Provider(IDP) Configuration.
Step 2
Click Add.
Step 3
Enter the SAML details that you have from your ID provider.
Name (required): The name should not have any spaces in it. You can specify it to your preference, but we recommend using the organization name to avoid any confusion.
- Reply(ACS) URL: This is prefilled and cannot be edited.
- Entity ID/Issuer URL (required)
- Sign-In URL (required)
- Certificate (required)
Example:
Note: Click on the Metadata XML button if you need the Openlearning SAML metadata or alternatively, copy it from here:
https://www.openlearning.com/saml-metadata
Step 4
Once you have entered the details, click Save.
Step 5
If you link it successfully, you will now see the launch URL on the integration page.
Step 6
The Launch URL here can then be shared with users if you want them to login using the Identity provider details and it would sign them into the portal and redirect them to the portal landing page.
Note: If you have multiple IDPs added, you can share this link instead:
https://www.openlearning.com/saml-sso/PORTALURL/
Enrolment to a specific class
If you would like to link this directly / enrol them to a specific class, follow up with the steps below;
Step 1
Go to the course and head over to Administer Learners > Advanced
Step 2
Scroll down to Single Sign-On Settings and tick the checkbox - Enable automatic enrolment via SAML Sign-On, click Save Settings.
Step 3
The page will reload and you will now see these options:
- Class Login URL (SAML): This would be the direct link to sign in to the class instead of landing on the portal page.
- Seats per Identity Provider:
- Seat Allocated: This will allow you to allocate seats and limit the learner's enrolment for each identity provider for the class
- Seats Occupied: The number of seats occupied by learners from that provider
- Failed Enrolment Notification: Any failed enrolment will be sent to the email address that is added to the field here.
Encounter any issues?
If you are having issues linking your IDP with Openlearning, please first refer to the troubleshooting steps listed in this article below:
Failing that, reach out to our Customer Success team at support@openlearning.com with the details of the issue including screenshots of the error and the troubleshooting steps taken so we can assist you further.