This is a premium product add-on and must be purchased and configured through your Account Manager.
The MANTL Console supports Single Sign-On (SSO) via the OpenId Connect (OIDC) protocol.
Financial institutions who use Microsoft Azure to manage the digital identities of their employees can easily integrate the MANTL Console as an app in Azure.
This feature makes it faster for employees to adopt and log in to MANTL, while reducing whirlwind work for your IT admins.
Prerequisites
- Enabling SSO on your account will affect all your users immediately in that environment.
- When SSO is enabled, none of your users will be able to log into the MANTL Console with an email address and password, and any previous MFA settings will be ignored.
- Users that attempt to login via an email address will seamlessly redirect through Azure.
- Before you add the app in Azure for your organization, you will need to send a few pieces of information back to your CSM.
- Azure Active Directory tenant ID (documentation).
- The email address domain(s) your users may attempt to log in with.
- Most financial institutions will add the MANTL app in Azure account twice, once each for UAT and Production environments.
- Users must be provisioned in MANTL before they can log in. Assuming you're planning on using Azure to automatically provision users, it's recommended to configure SCIM in Azure first.
Supported Features
- Service Provider Initiated Authentication Flow
- Users can log in to MANTL using Azure by navigating to the MANTL Console and providing their email address.
- Instead of typing in their email every time they log in, users streamline the process by bookmarking the following:
- Identity Provider Initiated Authentication Flow
- Users can log into MANTL using Azure by clicking on the MANTL icon from their My Apps page.
Configuration Steps
- You must have permission in Azure to consent to a permission request on behalf of your organization.
- MANTL's enterprise application is listed in the Azure Marketplace.
- It can be added from your Azure account by navigating to Enterprise applications > New Application > searching for MANTL > then clicking "Sign up for MANTL" in the side sheet that opens.
- Or, simply follow these links to add the MANTL applications to your Azure account
- If your user is not provisioned in MANTL, expect to receive an SSO error. Either way, however, the MANTL app will appear in the list of Enterprise applications for your Azure account.
- Assign users and groups to the application(s) (documentation).