Using SSO Login for a Partner User

You can login to the Orchestrator with your local credentials or SSO, if set up at the Partner level. This section describes how to log in to Orchestrator using Single Sign On (SSO) as a Partner user.
  • Ensure you have configured the SSO authentication in Orchestrator.
  • Ensure you have set up roles, users, and OIDC application for the SSO in your preferred IDPs.

    For additional information, see Authentication.

  1. In a web browser, launch the Orchestrator application. The VeloCloud SD-WAN Operations Console screen appears.
    Figure 1. Orchestrator Login Screen
  2. Select Sign In With Your Identity Provider.
    Figure 2. Signing In With Your Identity Provider
  3. In the Organization Domain text box, enter the domain name used for the SSO configuration and select Sign In. The IDP configured for the SSO authenticates the user.
    Note: Once the users log in to the Orchestrator using SSO, they are not allowed to login again as native users.
    • Manage and monitor Partner customers
    • Manage Partners and Partner settings
    • Configure User Account details
    • Manage Gateway pools and Gateways

    Additionally, in the Orchestrator home page, you can access the following features from the Global Navigation bar:

    • The user can select the User icon located at the top right of the screen to access the My Account page. The My Account page allows users to configure basic user information, SSH keys, and API tokens. Users can also view the current user's role, associated privileges, and additional information such as version number, build number, legal and terms information, cookie usage, and Arista trademark. For additional information, see Configure User Account Details.
      Figure 3. Displaying My Account
    • Starting with the 5.4.0 release, the In-product Contextual Help Panel with context-sensitive user assistance is supported in the SD-WAN service of the Enterprise Orchestrator UI and as well as for the Operator and Partner levels. In the Global Navigation bar, select the Question Mark icon located at the top right of the screen to access the Support panel.

      The Support panel allows users across all levels to access helpful and important information such as Question-Based Lists (QBLs), Knowledge base links, Ask the Community link, how to file a support ticket, and other related documentation from within the Orchestrator UI page itself. This makes it easier for the user to learn our product without having to navigate to another site for guidance or contact the Support Team.

      Note: By default, the Support Panel is not available to all Customers. You can activate this feature for a Customer by navigating to the Global Settings > Customer Configuration > Additional Configuration > Global > Feature Access page. For additional information, see Configure Partner Customers.
      Figure 4. Adding Feature Access