Topic
How to update the organization-level metadata for single sign-on (SSO) in the Everbridge Member Portal.
Description
Organizations belonging to the same Everbridge account may be configured to have different Member Portal SSO configurations. The Everbridge system has the capability to accept one metadata file per organization within the account instead of having an umbrella metadata file covering all organizations. This guide provides the steps to upload a new metadata file into the Single Sign-On (SSO) settings at the Organization level in the Everbridge Member Portal.
After acquiring a new certificate or the identity provider (IdP) system settings have changed, follow the steps listed below.
Prepare Your Organization
Before making changes, communicate to users that SSO is scheduled for reconfiguration.
If users do not already have break glass access, see knowledge article EBS: Single Sign-On (SSO) Break Glass Access in Everbridge Suite. Using break glass access ensures that the Everbridge platform can still be accessed in cases of emergency without issues during the reconfiguration.
Backup The Existing Configuration
- Log in to the Manager Portal and select the appropriate Organization from the upper right-hand corner.
- Select Settings tab from the top menu bar.
- Select Security from the menu on the left.
- Select Single Sign-On for Member Portal from the sub-menu.
- Capture a screenshot or copy/paste the existing configuration information into Notepad.
- Click Download at the bottom of the page to download the existing metadata file.
Updating Only the Identity Provider Metadata File
- Log in to the Manager Portal as an Organization Administrator.
- Select Settings from the top menu bar.
- Select Security from the menu on the left.
- Select Single Sign-On for Member Portal from the sub-menu.
- Select the Edit Pencil to the right of the name of the current Metadata File.
- From your files, choose the name of the new metadata file.
- Select Open.
- Click Save.
- Procced to Testing the SSO configuration.
Reconfigure Member Portal SSO Settings
- Log in to the Manager Portal as an Account Administrator.
- Select Settings tab from the top menu bar.
- Select Security from the menu on the left.
- Select Single Sign-On for Member Portal from the sub-menu.
- Click the white Remove button to clear the existing configuration.
- Using the backup you created, re-enter the Name for your SSO instance.
- Using the backup you created, re-enter your API Name. The API name must exactly match what you chose for the Entity ID and ACS URLs.
- Upload the Identity Provider Metadata file by clicking Choose File.
- Select the appropriate radio button for the Security Hash Algorithm.
- Click Save.
- Optional: Check the box for Mobile App to allow SSO access via the Everbridge Mobile App.
- Click Save a second time to instigate the option to Download the metadata file from Everbridge. Once the Download link appears above the Save button, reconfiguration is completed.
Test the New SSO Configuration
Request a few users to attempt logging in via SSO. If the users are unable to log in:
- Capture screenshots and specific error messages.
- Restore the prior configuration by clicking Remove, re-entering the settings captured during the Backup Existing Configuration step, and uploading the original metadata file downloaded during the Backup Existing Configuration step.
- Reach out to the IdP administrator to determine whether there is an error happening on the IdP side.
- Open a case with Everbridge Technical Support and note the following:
- Specific error received
- Impacted user
- Username entered upon logging in
- Date/time of the failed sign-in attempt.
Related Articles:
EBS: Troubleshooting Single Sign-On (SSO) in Everbridge Suite
EBS: Troubleshooting & Configuration Guide for Single Sign-On (SSO) - Main Page
Download XML for Record Keeping
If the reconfiguration was successful, download the XML file used to create this new SSO configuration for record keeping and follow the steps below:
- Log in to the Manager Portal as an Account Administrator.
- Select Settings from the top menu bar.
- Select Security from the menu on the left.
- Select Single Sign-On for Manager Portal from the sub-menu.
- Scroll to the bottom of the configuration settings and click the Download link and save the XML file. (Note: If you have not configured SSO for the Member Portal, there will be no Download link.)
Article Feedback
Please sign in to leave a comment.