Ask the Community
Groups
Adding OpenID Connect to Autotask - Connect IT Community | Kaseya
<main> <article class="userContent"> <p>Stage 1</p> <ol><li>Login to your Autotask account.</li> <li>Go to <strong>Admin</strong> > <strong>Features & Settings</strong>.</li> <li>Expand <strong>Resources/Users (HR)</strong> > <strong>Single Sign On</strong> (OpenID Connect (OIDC).</li> </ol><p>Stage 2</p> <ol><li>Log into your Passly tenant as an admin. </li> <li>Go to <strong>Auth Manager</strong> > <strong>Agent/Client</strong>.</li> <li>Hover over the <img src="https://us.v-cdn.net/6032361/uploads/migrated/PC882KCE5W8R/plus-sign-png.png" alt="Plus_sign.PNG" width="26" height="28" class="embedImage-img importedEmbed-img"></img>sign in the bottom right corner. A new button appears on top.</li> <li>Click the same button with the ToolTip that says ‘Add New Agent.’ The Add New Agent page appears.</li> <li>Click to select the <strong>OpenID Connect</strong>.<br><img src="https://us.v-cdn.net/6032361/uploads/migrated/51IJAZ695L5Z/openidconnect-png.png" alt="openIDConnect.PNG" class="embedImage-img importedEmbed-img"></img></li> <li>Enable the <strong>Agent </strong>checkbox.<br><img src="https://us.v-cdn.net/6032361/uploads/migrated/KBSVLFL8QPPV/agent-enabled-png.png" alt="agent_enabled.PNG" width="246" height="173" class="embedImage-img importedEmbed-img"></img> </li> <li>Give the agent a <strong>name</strong>.<br><img src="https://us.v-cdn.net/6032361/uploads/migrated/O15JPV8VCWUI/agent-name-png.png" alt="agent_name.PNG" width="186" height="48" class="embedImage-img importedEmbed-img"></img></li> <li>Copy the <strong>Callback/Redirect URL </strong>from Autotask, and paste it the <strong>Redirect URL (Origin) </strong>field in Passly.<br><img src="https://us.v-cdn.net/6032361/uploads/migrated/2C894D40D06N/redirect-uri-png.png" alt="redirect_URI.PNG" width="158" height="49" class="embedImage-img importedEmbed-img"></img></li> <li>Leave the <strong>Require Consent during Sign in</strong> unchecked. Checking this box will prevent login for all users except for whom the Passly integration is set up.</li> <li>Click <strong>Add Agent</strong>.</li> <li>From the list of agents, select the agent you created.</li> <li>Click <strong>Show Key </strong>and copy the <strong>ID</strong> and <strong>Key</strong> from Passly into the respective fields in Autotask.</li> </ol><p><img src="https://us.v-cdn.net/6032361/uploads/migrated/J8050MJMRO9Z/agent-info-show-key-png.png" alt="agent_info_show_key.PNG" width="313" height="170" class="embedImage-img importedEmbed-img"></img><br><em>Do the following in Autotask:</em></p> <ol><li>In the <strong>OpenID Connect Discovery Document </strong>field in Autotask, insert URL for your Passly instance (ex. <u><a href="/home/leaving?allowTrusted=1&target=https%3A%2F%2F%7Btenantname%7D.my.passly.com%2F.well-known%2Fopenid-configuration">https://{tenantname}.my.passly.com/.well-known/openid-configuration</a></u> ) </li> <li>Select the <strong>Enabled for selected resources using Identity Provider’s Name Identifier </strong>option.</li> <li>Click the <strong>Test </strong>button in Autotask. </li> </ol><p><em>To disable Single Sign-On (OpenID Connect) in Autotask, do the following:</em> </p> <ol><li>Go to <strong>Menu</strong> > <strong>Admin</strong> > <strong>Features & Settings</strong>. </li> <li>Expand Resources/Users (HR) > Single Sign On (OpenID Connect (OIDC) </li> <li>Choose the <strong>Disable</strong>.</li> <li>Click <strong>Save</strong>.</li> </ol> </article> </main>