Configuring PayAnalytics SSO/OIDC against customer authentication system

Purpose

This document describes the steps a technical contact for a PayAnalytics by beqom customer is required to carry out in order to configure SSO/OIDC authentication for the PayAnalytics by v online solution using their own authentication portal as an Identity Provider.

Responsibilities

Technical contact for PayAnalytics by beqom customer: Carries out these instructions.

Prerequisites

• A dedicated PayAnalytics by beqom instance with SSO/OIDC support enabled has been created for the customer.

• The technical contact has a user account (using username/password) with administrative privileges on the PayAnalytics by beqom customer instance.

• The technical contact has access to the authentication system.

Procedure

1. Log into your PayAnalytics instance via "Other Options" -> "Sign in as administrator" (see Figure 4.1). If OIDC has not yet been enabled then the login form can be used directly. If you're logging in for the first time you will need to retrieve your password with the "Forgot Password" feature.

This is an note/information message.

Until OIDC is enabled for the instance you will see the normal Username/Password login screen.

Figure 4.1: Administrator login on PayAnalytics SSO login screen.

2. In PayAnalytics, open settings (by clicking ) and from the settings page click "SSO/OIDC configuration".

3. Fill in the OIDC configuration page. Replace “passport.beqom.com” with urls specific to the authentication gateway you are using.

Figure 4.2: Values to be copied from PayAnalytics into customer OIDC configuration.

Also available in the following table:

• Click “Save”

Additional information

A url template for a callback url is

https://customer.payanalytics.com/oidc/callback .