Identity providers | PS Pathfinder
BeyondTrust Pathfinder supports connecting to your third-party single sign-on applications. Configuring an identity provider allows members of your organization secure and authorized access to BeyondTrust applications, allowing you to centrally manage accounts, passwords, and identity verification in a manner familiar to both your users and security team.
For more information, see Identity providers.
More information on the Password Safe application
If SAML group claims are configured correctly for the IDP, Password Safe respects those and provisions users into groups (provided they exist). If you are logged into Pathfinder, go to https://app.beyondtrust.io/api/auth/userinfo to inspect the group names coming in on the SAML assertion claim. That user should be placed in that list of groups when they access Password Safe assuming a matching group name is already created in Password Safe Configuration.
In the example below, the group created in Password Safe is the same group name coming through the SAML claim. Any user logging into Pathfinder via SAML, will be added to the group in Password Safe.

Updated 17 days ago
