Single Sign-On (SSO)
SSO Redirect feature, enabling seamless user transitions from a company’s website to WeGuard without requiring repeated login credentials. It simplifies transitions between portals with a single click by eliminating repeated credential entries providing an efficient, hassle-free experience for users.This functionality leverages API keys to provide secure, efficient access, enhancing user convenience and security by eliminating manual logins.
Process for enabling SSO through the WeGuard Enterprise Portal
- Login to the WeGuard Console and click on Settings
- Click on the API Key, select the Generate API Key
- Upon activation, the API Key and Secret Key will appear on the screen.
- Use the following buttons for key management:
- Refresh API Key: Generates a new API key if needed.
- Revoke API Key: Disables the key to prevent misuse if compromised.
- The Timeline option on the dashboard provides a detailed history of API calls made with the generated API key. This includes: Device ID, API Path, Client IP, Requested Timestamp, Request Method, Request Payload, Response Payload
Admins can filter this data by date range and download it for analysis or record-keeping.
Configuring SSO
Below is the example to get the redirectUrl to WeGuard console:
curl --location '<weguard_server_base_url>/v1/sso/links' \
--header 'WeGuard-API-Key: bfbecc18a4684497b83ad72cb962e1fd' \
--header 'Content-Type: application/json' \
--data-raw '{
"redirect": true,
"expiryRedirectURL": "<your_website_url>",
"username": "<userName/Email>"
}'
Sample Response:
{
"headers": {},
"body": {
"ssoLink": "https://weguard.ai/#/login?sso=fr4353893kdffkk"
},
"statusCodeValue": 200,
"statusCode": "OK"
}
--header 'WeGuard-API-Key: bfbecc18a4684497b83ad72cb962e1fd' \
--header 'Content-Type: application/json' \
--data-raw '{
"redirect": true,
"expiryRedirectURL": "<your_website_url>",
"username": "<userName/Email>"
}'
Sample Response:
{
"headers": {},
"body": {
"ssoLink": "https://weguard.ai/#/login?sso=fr4353893kdffkk"
},
"statusCodeValue": 200,
"statusCode": "OK"
}
- Utilize the provided API (POST), ensuring that the API key is included in the headers. The API key can be obtained from the WeGuard console. In the request payload, include the parameters
expiryRedirectUrlanduserName. This request will generate anssoLink, which contains a token appended to the URL. Note that this token is valid for 10 minutes. - Use the generated
ssoLinkto redirect users to Dashboard page without logging into WeGuard Console.
We hope this article was useful. Thank you for reading.
For more WeGuard insights, please explore the Visual Knowledge-base Series
For more details, please visit https://www.weguard.com
If you need any help on this, do call up WeGuard Support at +1(737) 931-1410 Ext. 102 or contact WeGuard Support Email or Initiate Chat
Related Articles
How to Enable Single app kiosk mode?
Single app kiosk mode is a configuration that locks a device to run only a specific application. The application starts on its own, operates in the foreground, and keeps coming back even when the device is restarted or shut off. Kiosk mode, then, ...WeGuard Enterprise Sign Up - Device Enrolment Procedure via afw#weguard
Hello and Welcome to WeGuard Enterprise Visual Knowledge-base Series. In this KB article, We will explain how to enroll a device using ‘afw#weguard’ method. This Enrollment setup has 2 parts. Part 1: Adding device to the policy on the WeGuard ...How to Enable Multi-Factor Authentication for Sign-in?
Multi-Factor Authentication is crucial because it adds an extra layer of security beyond just a password. This is important because the MDM platform manages and controls access to sensitive data and critical applications across all devices in an ...Why do I need to do EMM registration while signing up for Android?
Hello and Welcome to WeGuard Enterprise Visual Knowledge-base Series. In this KB article, We will explain the need for EMM registration while signing up for Android on WeGuard Enterprise Portal. EMM stands for Enterprise Mobility Management. EMM is a ...Roles & Permissions - How to Add Observers?
Hello and Welcome to WeGuard Enterprise Visual Knowledge-base Series. In this KB article, We will explain how to add a new observer to your WeGuard account. Press on the Roles & Permissions tab. By default, when you sign-up an admin account will be ...