- Created by John Dougherty on Jan 04, 2021
In This Article
Overview
If an application does not support SSO, Clearlogin's browser-integrated Password Manager can be used to secure the user's credentials, and then provide those credentials to the application when the site is visited by the user.
If you are unable to find your app in the catalog, you can create a custom Password Manager app below.
Password Manager apps will not work without the browser-integrated Password Manager extension. For information on installing the Password Manager extension in a browser, refer to the Installing Password Manager article. For a tour of the Password Manager extension, refer to the Using Password Manager article.
Steps to Add a Custom Password Manager App
- Sign into the Clearlogin Admin Console: https://admin.clearlogin.com
- In the left navigation bar, browse to: Apps
- Click on the New App Connection button
- At the bottom of the page in the Custom Connections section, select the Password Manager App
- Using the below tables as a reference, enter the required information and then Select Create Password App
General Settings
Setting Name | Description |
---|---|
Display Name | This name will be shown at the bottom of the app tile in the user's dashboard. |
Icon | Upload a custom image file, which will be used in the app tile in the user's dashboard.
To properly align the app's logo/icon within the 834 x 834 canvas size, create the following white space around the logon/icon:
|
Accepted Access Tags - Shared | Password apps support multiple access tags to allow different sets of users access to personal accounts, your shared account, both, or neither! Choose the access tags that you would like to allow access to the shared account for this App Connection.
The shared credentials are set from the summary page of the app connector. For more information on Access Tags, refer to the Clearlogin Application Connectors article. |
Accepted Access Tags - Personal | Password apps support multiple access tags to allow different sets of users access to personal accounts, your shared account, both, or neither! Choose the access tags that you would like to allow access to the personal accounts for this App Connection.
For more information on Access Tags, refer to the Clearlogin Application Connectors article. |
URL Settings
Setting Name | Description |
---|---|
Login URL | This is the URL of the login page that will trigger the Password Manager extension to perform a login. |
App URL Override (Optional) | Override sending a user to the Login URL when clicking this App Tile on the User Dashboard. Send to this URL instead. |
Form Selector Settings
Setting Name | Description |
---|---|
Form Selectors | Form Selectors are how Clearlogin identifies the form fields, which are populate with a user's credentials. Clearlogin uses jQuery style DOM selectors, which supports multiple styles of selectors.
|
Selector Fields | These fields need to be populated with the correct items for the Password Manager app to pass the user's credentials to the application. If you are using a Password Manager app from the catalog, we recommend that you do not change these fields unless directed by the Evolve IP support team.
|
Custom Fields | With Custom Fields you can specify additional fields to fill out on the login form. This uses a Key/Value pair:
|
Additional Settings
Setting Name | Description |
---|---|
Enabled | This will enable or disable the app. When it's disabled, it will not show on the user dashboard.
|
Admins Only | When selected, only user accounts assigned the admin role will see the app on the user dashboard.
|
Hide on Dashboard | When selected, the app will be hidden from the user dashboard.
|
AD Follow Me | This feature will save AD credentials to this App on user login. This is useful for applications that support authenticating with a user's Active Directory credentials.
When AD Follow Me is enabled, you can modify usernames by appending or prepending text. Check the the right sidebar for examples. |
Shared User Credentials
Shared User Credentials are for Password Manager apps that need to share the same username & password across all users that have access to the application. Any end-user that clicks an app tile in their dashboard that is configured with a shared user credentials will be signed in automatically.
To set or modify a Password Manager App's shared user credentials, Edit the Password Manager App, and from the summary page, click on the Shared Credentials button in the right sidebar.
Staging User Credentials
You can set a user's credentials in a Password Manager App on their behalf. This can be accomplished per user (one-by-one), or it can be done in bulk by uploading a CSV file.
To set or modify a user's credentials on their behalf, expand one of the following methods:
- Edit the Password Manager App, and from the summary page, click on the User Credentials button in the right sidebar.
- You will see a list of users that have added their credentials to the app on their own.
- If you need to edit the credentials for an existing user, find the user in the list, and click the Edit button for that user.
- If you choose to delete an existing user in the list, it only deletes their credentials. It does not remove their access to the app, and it does not remove their user profile.
If you need to add a user to the list and set their credentials, click the New Credentials button.
To add a user to the list, a user profile must already exist in Clearlogin for that user. You can either create a user profile on behalf of the user, or wait for them to successfully authenticate to Clearlogin.
- Select the user's profile from the drop-down menu.
- Enter their username and password.
- Click on the Create Credential button.
- Edit the Password Manager App, and from the summary page, click on the User Credentials button in the right sidebar.
- Click on the Upload CSV button.
- On the upload page, note the required items for the CSV file in the right sidebar. The App's canonical name is shown in parenthesis in the Select App drop-down menu.
- If needed, download a Sample CSV file.
You are not required to include a column for the app's canonical name in the CSV. If you choose not to include it, make sure you choose the app in the Select App drop-down menu.
- Once you have your CSV file finalized, use the Browse button to select your file.
- Select Destroy Credentials Not in CSV if you want to clear the credentials for all users that are not listed in the CSV file.
- Click on the Upload button to start the process.
- No labels