Guides you through the process of associating the selected Change Management model with a valid SDx server.
The default URL used for AuthorizationCodewithProofKey (PKCE) client for any of the authentication servers must be http://127.0.0.1/.
You must enter the values for Client ID and Client Secret in two sections - Authentication code with Proof Key for Code Exchange and Client Credentials. Obtain the authorization data for both sections from your SDx administrator.
SDx Server URL
Specifies the Web client URL of the SDx server with which to register your model. Use the following format: htttps://[HostNodeName]/[SDxWC], where SDxWC is the SDx Web client.
Identity Provider Details
Identity Provider Key Name
A unique key for each authentication provider. For SAM, the value is always acr_values.
Identity Provider ID
A value provided by the administrator, based on the configuration.
This value for SAM can be determined by logging on to SAM and clicking Settings > Identity. In the Identity Providers section, navigate to the provider linked to your SAM server and copy the ID.
If you enter the identity key, SAM will directly call the identity server for validation of the user with the local user name and password. If the details are not provided here, authentication will happen in SAM's user section.
This key differs for each authentication, and it is the administrator's responsibility to set the relevant identity provider values here, depending on how they want the caller to be authenticated.
For OKTA, the identity provider details are required only if the identity provider is configured. Otherwise, these fields can be ignored, and the local user will be used for authentication.
Authorization code with Proof Key Code Exchange
The authorization server uses the AuthorizationCodewithProofKey (PKCE) method to authenticate each request. The values in the Authentication code with Proof Key Code Exchange section redirect you to the applicable authentication server logon page.
Identifies the Smart Client. Type the unique identifier for the application in the format of a 32-character hexidecimal string. The Client ID is equivalent to a username.
Authenticates the Smart Client and allows access to Smart API. The encrypted text string that you enter is known only to the application and authorization server. The Client Secret is equivalent to a password. If you are using OKTA with PKCE for authentication, Client Secret is optional.
The values in the Client Credentials section authenticate the client and redirect you to the register page.
Identifies the Smart Client. Type the unique identifier for the application in the format of a 32-character hexidecimal string. The Client ID is equivalent to a username
Authenticates the Smart Client and allows access to Smart API. The encrypted text string that you enter is known only to the application and authorization server. The Client Secret is equivalent to a password.
Opens the Intergraph Authorization Server login page for the SDx site.
Closes the dialog.