Library Admin Authentication

In 2021 Update 2 or later, the Library admin pages support basic and SAML authentication when only SAML authentication is enabled. The admin pages authentication is governed by the auth.admin.authMethod parameter in the WEB-INF/classes/config/configOverride.properties file. If the parameter is not mentioned in the file, you can add it as shown below.

There are two possible values for the auth.admin.authMethod parameter:

• auth.admin.authMethod = 1 (Default)

  The default value of the auth.admin.authMethod parameter is 1. This means the Library admin pages are protected by basic authentication.

• auth.admin.authMethod = 2

  The Library admin pages are protected by the SAML admin groups mentioned in the saml/config/open form. These admin groups are linked to the groups on the Identity Provider (IDP) side. The members who belong to the IDP admin groups can only access the admin pages. Users that do not belong to the admin group receive a 403 Forbidden error.

The administrator can change the parameter value as per the requirements. A Web application server restart is required for the changes to take effect.

The Library admin pages cannot be protected by the SAML admin groups when multiple authentication modes are enabled.