Adding a social identity provider

Add a social identity provider to enable users to sign in to applications using their existing social accounts. Social login is a common form of authentication where the users identities are verified against user information that is managed by social network providers or services. The user information is federated in Verify, which eliminates the need to manually create accounts in Verify. Most users prefer to do a social login so that they do not have to create new accounts to access a site and it is typically easier for them to remember their social account credentials.

About this task

A social identity provider can be set up one time and it is used as a sign-in option for applications only. It cannot be used to sign in to the Verify Admin Console or My Homepage.

Procedure

  1. Select Authentication > Identity providers. Select Add Identity Provider. The Add Identity Source dialog box is displayed.
  2. Select from the following social identity providers and select Next.
    • Apple
    • Baidu
    • Facebook
    • Github
    • Google
    • LinkedIn
    • QQ
    • Renren
    • Twitter
    • WeChat
    • Weibo
    • Yahoo
    • ZenKey
  3. Specify the basic information.
    Table 1. Basic information
    Information Descriptions
    Name

    The name that you assign to represent the user registry that is used by identity providers such as Microsoft Active Directory, Microsoft Azure Active Directory, or others.

    If there is more than one identity provider that is configured and enabled, the identity provider name is displayed in the Verify Sign In page.

    This information is also displayed in the Directory > Users & Groups > Users tab, Add User dialog box, when you select an Identity Provider.

    Realm

    It is an identity source attribute that helps distinguish users from multiple identity providers that have the same username.

    For the following identity sources:
    • Apple, the realm value is www.apple.com.
    • Baidu, the realm value is www.baidu.com.
    • Facebook, the realm value is www.facebook.com.
    • Github, the realm value is www.github.com.
    • Google, the realm value is www.google.com.
    • LinkedIn, the realm value is www.linkedin.com.
    • QQ, the realm value is www.qq.com.
    • Renren, the realm value is www.renren.com.
    • Twitter, the realm value is www.twitter.com.
    • WeChat, the realm value is www.wechat.com.
    • Weibo, the realm value is www.wiebo.com.
    • Yahoo, the realm value is www.yahoo.com.
    ID An ID is generated for the identity provider when you select Save.
    Enabled

    Indicates whether the identity provider is active and available.

    If turned Off, the identity sourceprovider is not configured as a sign-in option. The users cannot use the configured identity provider to sign in to the target application.

    If turned On, it is partially enabled. This setting does not automatically enable this source for all application. You must select this source for the individual applications.

    Identity Linking

    Enabled

    Turns on identity linking for a specific identity provider. Shadow accounts are not created in Cloud Directory at the realm that was specified for this identity provider.
    This feature is available for SAML applications and these social identityproviders
    • Apple
    • Facebook
    • Github
    • Google
    • LinkedIn
    • Twitter
    • WeChat
    • WeChat mobile
    • Yahoo
    Note:
    1. You cannot enable linking on the identity provider that is set as your default identity provider.
    2. You cannot disable or delete your default linking identity provider.
    Unique User Identifier
    Select the attribute from the menu that acts as the identifier for the linked account.
    Just-in-time Provisioning
    If the user account is not found in the primary identity provider, this option creates a shadow account in that primary realm.
    External ID
    The attribute is required for WeChat. to uniquely identify users in WeChat repository.
  4. Provide the social identity provider with certain data about your application. After which, provide Verify with certain data from the social identity provider.
  5. Select Save.