1. Curator Styles

    2. Homepage

    3. Titles and Toolbars

    4. Group Overrides

    1. Pages Overview

    2. Tiles

    3. SSRS Embedding

    4. Explorer

    5. User Customized Metrics

    6. Error Pages

    1. Tutorials

    2. Search

    3. Managing Menus

    4. Menu Items

    5. Keywords

    6. Files

    7. Notices

    8. Loading Screens

    1. Embedded Tableau Server Views

    2. Thumbnails

    3. Tagged Workbooks

    4. Favorites

    5. Email Subscriptions

    6. Data Export

    7. Download Workbook

    8. Share Workbook

    9. Custom Views

    10. Pause/Resume Changes

    11. Dashboard Titles

    1. Filters

    2. Parameters

    3. Apply Button

    4. Filter Categories

    5. Hidden Sticky Filters/Parameters

    6. Specify Filter Sheet

    7. Mark Commenting

    8. URL Action Overrides (Link Target)

    9. Hidden Dashboards

    10. Replace Dashboard URLs

    11. Site Switcher

    12. Cache Filter/Parameter Options

    1. Data Manager Basics

    2. Web Data Connector (WDC)

    3. Connecting to Data Manager

    4. User Commenting

    5. Field Calculations

    1. Overview and Enabling

    2. Report Builder: Email Option

    3. Report Builder: Watermark Text

    4. Report Builder: Scheduled Reports Option

    1. Automatic License Provisioning

    2. Just-in-time (JIT) Provisioning

    3. Users and Groups

    4. Reset User's Password

    5. User Sync and Membership Sync Overview

    6. Custom Attributes

    1. Frontend User Permissions

    2. Password Change

    3. Password Reset

    4. Password Expiration and Complexity

    5. Bypass Link-preview Security

    1. E-mail Configuration

    2. System Notifications

    1. Force SSL

    2. Trusted Tickets

    3. Basic HTTP Authentication

    1. Import / Export

    2. Backend Users

    3. Frontend Users

    4. Updating License Key

    5. Linux: Cron Troubleshooting

    6. Filesystem Permissions

    7. Backend Administrator Password Reset

    8. Dependency Updates

    9. Updating Curator Logging

    10. Third Party Cookies

    11. Troubleshooting Load Times

    12. Manual Restoration of Curator Backup

    13. Curator Backup

    14. Taking a Manual Full Backup

    1. System Upgrade

    2. Disable Curator Upgrades

    3. Offline Upgrades (Airgapped)

    4. Troubleshooting Upgrades

    1. Scripts

    2. Commands

    3. Subscription Routing

    1. Curator API Overview

    2. Integration

    3. Curator API

    4. Tableau API

    5. Content

    6. User API

    1. Username Mapping

Setup: Authentication

OneLogin (OIDC)

OneLogin Setup

  1. Go to the Applications page in the Administration area of OneLogin and click "Add App."
  2. Enter "oidc" in the search bar and select "OpenId Connect (OIDC)." The vendor should be "OneLogin, Inc."
  3. Give the Application a display name like "InterWorks Curator," upload icons if you'd like, and click "Save."
  4. In the Application's settings page, navigate to "Configuration" and enter the following for the URL and URI's:
    • Login URL: Base Curator URL (i.e. https://curator.company.com).
    • Redirect URI's: Base Curator URL with /user/oauth appended (i.e. https://curator.company.com/user/oauth). No other URI's should be entered.
    • Post Logout Redirect URI's: Base Curator URL (i.e. https://curator.company.com). No other URI's should be entered.
      1. In the Application's settings page, navigate to "SSO" and set the following:
    • Application Type: Set this to "Web."
    • Token Endpoint - Authentication Method: Set this to "POST."
      1. Save the settings and stay on the "SSO" page. We'll need this info for the Curator-side of the setup.

Curator Setup

  1. Go to the Authentication Settings under Settings > Security in the Curator backend.
  2. Choose "OAuth / OpenID Connect" for the Authentication Type.
  3. Expand the "Customization" section and enter the following:
    • OAuth Domain: Enter the "Issuer URL" from the "SSO" area of the Application's settings in OneLogin. This usually ends in "/oidc/2."
    • OAuth Client ID: Enter the "Client ID" from OneLogin.
    • OAuth Client Secret Enter the "Client Secret" from OneLogin. You may have to click "Show client secret" in OneLogin to see it.
  4. Save the settings.

Users

As users log in via OAuth, user records will automatically be provisioned in Curator. If Curator is connected to an analytic platform it will sync over details like display name or email at the same time during login. No SCIM necessary!