Finanzen The Swiss standard for accounting

Link Abacus users with external authentication

Foreword

This setting must be made by the Abacus installation owner. As a subscription user, you cannot make these settings/configurations.

Depending on the external authentication, there are various options for linking an Abacus user to the external IdP.

  • Several external authentications can be stored
  • One link is possible per external authentication.
  • External authentication can be deactivated.
  • Users can manage their external authentications themselves.

Send link to register external authentication.

Description

A link is sent to the user by e-mail. When this link is opened, the possible selection of authentications appears according to the authentication context guidelines. The user selects one here and thus links their external account with their Abacus account.

Requirements

  1. An SMTP server must be stored in Q902 - SMTP account management.
  2. An email address must be stored on the Abacus user account.

Procedure

  1. Open the program "Q981 User Administration".
  2. Click on Edit - Global modification in the menu.
  3. Select the item "Send link to register external authentication".
  4. In the next step, select the Abacus users who should receive such a link.
  5. An overview of the selected users is then displayed.
  6. Click on Next to send the e-mails.

Important

The Abacus user now receives an e-mail with a link that is valid for 60 minutes by default. The link is generated using the service URL. The validity period can also be changed. 

To do this, click on the "Settings" symbol in the user administration.

Under the item "RESET PASSWORD" - "Validity period (link) Send password / link user", you can adjust the value in minutes.

Link Abacus users with external authentication

When the Abacus user opens the link, the login screen appears. Here, the user has the option of select-ing all external authentications that are made available to them based on the authentication context guidelines or the authentication context classes.

User links their Abacus account themselves with an external authentication.

An Abacus user can also link their user account to external authentication themselves. This can be done in the user account page. To do this, the Abacus user opens the following URL.

“https://<ABACUS_URL>/account”

Log in here with an existing login method. Then click on "External login". All available external login methods are now displayed.
If an external login method is already linked, this is also displayed. You can remove this link by clicking on "Remove".

If you click on "Add" for the corresponding external login method, you will be redirected to the corre-sponding login page of the IdP. Please log in here with your login details. You will then return to the "External login" page. If the link was successful, your login will appear in the external login method col-umn.