Carousel Cloud has the ability to integrate with SSO providers to make logging in just that much easier.
Please Note:
Though we have some dedicated configuration articles to help configure Carousel with specific providers, we are unable to write documentation for and test every SSO provider that's out there. If yours is not listed below, you will need to reach out to them for documentation and configuration assistance.
If you need an SSO Metadata file, add
/CarouselAPI/v1/Saml2to your Carousel Cloud URL (example: https://support.demo.carouselsignage.net/CarouselAPI/v1/Saml2) to view the latest version for your account.
Specific Documented Instructions
Entra ID/Azure - https://support.carouselsignage.com/hc/en-us/articles/360033875231-Setting-Up-Single-Sign-On-with-Azure-AD-and-Carousel
Shibboleth - https://support.carouselsignage.com/hc/en-us/articles/4403612844180-Carousel-Cloud-and-Shibboleth
Generic Instructions
This process will vary slightly between service providers, but the basic concepts are the same.
1. Create a new SAML 2.0 Application for Carousel
Log in to both Carousel Cloud and your SSO provider as an admin in separate browser windows.
In your SSO Provider, navigate to where Applications are managed. This is typically accessed from a main admin dashboard.
Create a new SAML 2.0 Application. If your SSO provider has different categories of applications to choose from, you will likely want to choose “new custom”, “create new”, or maybe a “non-gallery” application. If you have the option to select Single Sign On or SAML 2.0 at this point, choose it and continue on to configure the app for Carousel.
Now, looking at the Carousel Cloud UI, navigate to Configure > Users > SSO Identity Providers. Use the information provided there to populate the correlating fields in the App settings in your SSO provider. Again, the wording could be slightly different between providers but the fields should be there. The Supported Claims specifications may be set in an advanced settings menu of the app.
2. Create a new SSO Identity Provider in Carousel
Once you have finished setting up the app in your SSO Provider, you should be able to access the Sign On URL, Identity Issuer ID, and the x509 certificate and add it to Carousel.
Simply fill in all the fields using the information from your SSO provider. Selecting the SSO ONLY toggle will configure the system so that only site admins will be able to log in using an email/password. and upload your desired login logo and press save.
3. Add your Users
The last step is to add users to your app in your SSO Identity Provider, then create corresponding users in Carousel using the same email address and assign the proper access rights.