Skip to main content
Skip table of contents

Configuring PrinterOn to authenticate against a thirdparty Identity Management Service

You can configure PrinterOn to use a third-party Identity Management Service (IDM), such as Ping Identity, Okta, or iWelcome, as the authenticator for your PrinterOn service.

Third-party IDMs sit in the cloud, external to the PrinterOn service. As a result, when a user must authenticate, the PrinterOn Server redirects them to an external URL—hosted by the IDM—where the user can supply their credentials.

If the user is successfully authenticated, the IDM creates a user token that PrinterOn uses as confirmation that the user is authorized to access the PrinterOn service. Each subsequent time the user attempts to use a protected printer, PrinterOn checks with the IDM to determine whether the user token is still valid. If so, the user remains authenticated. Otherwise, the user must re-authenticate.

User credentials are submitted to the IDM. PrinterOn never requests the user’s credentials directly.

When using a third-party IDM for authentication, the PrinterOn Server uses its internal user store to control access to PrinterOn resources. User data is downloaded from the IDM to the PrinterOn user store, where you can create access control rules.

With most IDMs, PrinterOn uses Just-In-Time provisioning; the first time users authenticate against your identity management service to use the PrinterOn service, a copy of their user details is provisioned to the PrinterOn user store. Group data is not downloaded. You’ll need to manually create groups in the PrinterOn user store.

📘 Instructions

To configure PrinterOn to use a third-party IDM, you’ll need to complete the following tasks:

📋 Related articles

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close