15.6
Table Of Contents
- Dragon_NMCInstallGuideCover_20160929_v4_Cloud
- About this guide
- Chapter 1: Introduction
- Chapter 2: Preparing for your installation
- Chapter 3: Post-installation tasks
- Chapter 4: Preparing for your Active Directory single sign-on configuration
- Chapter 5: Installing the Local Authenticator
- Chapter 6: Preparing for your Central Authentication single sign-on configuration
- Central authentication overview
- Supported identity providers
- Supported federation relationship types
- Checklist—Planning your Central Authentication single sign-on setup
- Obtaining required information
- Configuring Central Authentication
- Installing the Active Directory/LDAP connector
- Viewing Central Authentication audit events
Nuance Management Center Server Installation and Configuration Guide
Configuring Central Authentication
Required grants
Generally, a Nuance representative configures Central Authentication for your organization. This requires the
following grant:
l
Manage Central Authentication—Grants the user write access to Central Authentication only for
the organization to which the grant was assigned. The user can create and test federated
relationships, view logs, and manage custom SAML signing certificates.
This grant will only be given to Nuance administrators. Customers will only have read only access.
Customers cannot create or configure federated relationships.
Users who require read-only access to view Central Authentication configuration and logs must have one of
the following grants:
l View Organization—Grants the user read-only access to Central Authentication configuration and
logs for the organization to which the grant was assigned. The user can also test federated
relationships.
l Super User—Grants the user read-only access to Central Authentication configuration and logs for
all organizations.
l Super User (Read-Only)—Grants the user read-only access to Central Authentication configuration
and logs for all organizations.
If you choose to use a custom SAML request signing certificate, the user adding and managing the certificate
must have one of the following grants:
l Manage Central Authentication Signing Certificates—Grants the user access to add and
manage custom signing certificates. The user cannot access or change federated relationships.
l
Manage Central Authentication—Grants the user write access to Central Authentication only for
the organization to which the grant was assigned. The user can create and test federated
relationships, view logs, and manage custom SAML signing certificates.
This grant will only be given to Nuance administrators. Customers will only have read only access.
Customers cannot create or configure federated relationships.
Configuring a federated relationship
For information on configuring and managing a federated relationship for your organization, see the "Managing
federated relationships for Central Authentication" section in the Nuance Management Center Help or in the
Nuance Management Center Administrator Guide.
For information on assigning grants, see the "Configuring Group Security" section in the Nuance Management
Center Help or in the Nuance Management Center Administrator Guide.
40