This article shows how to make an OpenID connection to the Vilans Protocollen application. The configuration takes place in HelloID and requires you to send information to Vilans.
- HelloID environment
- Vilans Protocollen environment
- Users who wish to make use of the SSO are required to have their email address in Vilans.
Create or Import a Certificate
If there is no certificate yet, a certificate must be imported or created. This can be done in the HelloID Administrator Portal under Settings > Certificates. For this tutorial, we will use a self-signed certificate. Learn more about certificates here.
Add the Vilans Protocollen Application
Create a new application in HelloID by navigating to Applications > Applications. Open the Application Catalogue and search for "Vilans". Find the OpenID template, and click Add. Learn more about managing applications here.
On the General tab, leave the Default Login URL field at its default setting. You will need to edit this field later, after Vilans activates the SSO and sends your customer-specific URL Click Next.
Single Sign-On tab
On the Single Sign-On tab, perform the following steps:
- Provide a value in the Secret field. Make sure this secret has no special characters. We suggest a string of at least 52 characters with uppercase, lowercase and numbers.
- In the Signing Certificate dropdown, select the certificate that you previously created or imported.
- Change the Redirect Uri to the redirect Uri provided by Vilans. For example:
- Click Next.
Self Service tab
On the Self Service tab, choose whether to automatically create a Self Service product, which makes the application requestable. This is optional. Click Next.
On the Finish tab, click Save to add the application to HelloID.
Make sure the correct user identifier is sent to the Vilans Protocollen application. By default the contact email address is used. Learn more about configuring application mapping here.
Click Close and then click Save. The configuration of the HelloID application is finished for now.
Vilans Protocollen Configuration
In order to make the connection, Vilans needs to add the connection on their side.
Send the following information to Vilans:
- Client ID
- Client Secret
- Discovery document URL
Vilans will create and send your customer-specific URL.
Client ID & Client Secret
Find these values on the Configuration tab of the application. Select the eye icon to view the secret.
Discovery document URL
Right-click the View discovery document button and copy its URL.
Final HelloID configuration
After sending the above information to Vilans, they will respond with your customer URL. Enter this value in the URL field on the application's General tab and select the save button. In order to activate the SSO connection, please add the customer specific URL, received from Vilans, to the default login URL setting on the application.
Single Sign-On has now been configured, and may be tested.