Single sign-on (SSO) allows a User to be logged in to Unicorn LMS from another location, for example your intranet, without having to enter additional login credentials.
Unicorn LMS implements the SAML 2.0 standard, which allows you to set up SSO with any system which also supports SAML such as AFDS or Azure AD.
See our guide on User access options for more information.
You can manage your own SAML SSO using SAML Configuration in Site Settings.
If you wish to use ADFS for your identity provider, you will need to read and refer to the document Configuring ADFS for Unicorn LMS SAML Single Sign On which will be shared with you during your site implementation. Note that whilst we have only documented setting up a Unicorn LMS SAML SSO integration in ADFS, it should work with any system which supports a SAML 2.0 integration.
Configuring an Identity Provider
To set up SSO from your system into Unicorn LMS, you will need to create an Identity Provider in the LMS. The simplest way to do this is to import SAML metadata which you have exported from your system, which you can do by clicking the Import Provider button above the Identity Providers section. This will set up most of the settings for you based on the setup of the system you want to set up an SSO link from. Alternatively, you can create an Identity Provider without using metadata by clicking the Add Provider button above the Identity Providers section.
You can export metadata from Unicorn LMS to import into your system by clicking the Export Metadata button.
Once you have created your identity provider by importing your metadata or clicking the Add Provider button, you can upload the public certificate which will be used to verify the signatures created by your system using your corresponding private certificate.
You can download the Unicorn LMS public certificate for signature verification in your system of SAML messages from Unicorn LMS by clicking the Download Certificate link in the identity provider’s settings.
The rest of the settings will depend on the choices you have made about your SAML SSO integration and will need to correspond to the setup you have performed in your identity provider system. We recommend that you do not create Users automatically and instead set up Users in the LMS via a data feed, and that SHA256 or greater is used as a signature method.
During the implementation of your SAML SSO integration you may experience issues. To help the troubleshooting process, Unicorn LMS provides a list of SAML related errors on the SAML Configuration page in Site Settings.