What SSO protocol will you be using?
Which user groups need to sign in via SSO?
By default, users are added to the Applicant group in FluidReview. If Admins or Reviewers require SSO, users must be first added to the FluidReview site to ensure proper account permissions. There must only be ONE point of entry for any one user group (co-applicant functionality is not supported).
NOTE: SSO for Recommenders is not supported; recommenders must use FluidReview’s native sign-in portal
How are users uniquely identified? [i.e. email, student number, employee ID, etc.]
How will users enter FluidReview? [SP-initiated SSO or IdP-initiated SSO]
- IdP-initiated SSO is only available using SAML protocol
What attributes need to be passed to FluidReview? [First name, Last name, email, etc.]
- Depending on the protocol used, required vs. optional attribute limitations may exist
Can your IdP automatically consume FluidReview’s XML metadata?
- NOTE: We recommend ensuring that your SSO Integration is setup to automatically consume FluidReview's metadata. If FluidReview updates their metadata then the SSO Integration will seamlessly update this. However, if it is not setup to automatically consume the metadata, this information would need to be manually updated. In this case, there is a potential for downtime with your SSO integration.