Overview

By default, SSO will not be performed when multiple identity sources are visible to the user even when explicitly activating SSO.
Either hide all other identity sources that are not used for SSO or specify which identity source needs to be used for SSO.

SSO will automatically be performed on OAuth 2.0 configurations with a single visible identity source, all other SSO protocols require to explicitly activate SSO.
There are several ways to activate SSO that are described in this article.

Agent

The Agent supports SSO by setting it to true in the Login section of the supplied Agent.xml/Agent.json file, which can be modified on the Liquit servers.
When multiple identity sources are visible, you can specify the default identity source by providing the name in the Login section, IdentitySource parameter option.
See below how each type of Agent can be configured.

Agent.xml

    <Login>
        <Enabled>True</Enabled>
        <SSO>True</SSO>
        <IdentitySource>LIQUIT</IdentitySource>
    </Login>

The Agent.xml file is located in C:\Program Files (x86)\Liquit Workspace\Agent\Agent.xml

Agent.json

{
    "login": {
        "enabled": true,
        "sso": true,
        "identitySource": "LIQUIT",
        "timeout": 4
    }
}

The Agent.json is located in:
Windows - %ProgramData%\Liquit\Agent\Agent.json
macOS - /Library/Application Support/com.liquit.Agent/Agent.json

URL Parameters

For more information about available URL parameters, see URL Parameters.
SSO can be activated by adding the ?sso=1 option to the URL.
When multiple identity sources are visible, you can specify the identitySource option to the URL.

Example:

https://workspace.liquit.com/?sso=1&identitySource=AD

where workspace.liquit.com is replaced by your Liquit FQDN.

HTTP Headers

SSO can be activated by adding the following HTTP headers (to the request to: /api/identity/domains):

X-Liquit-SSO - Value needs to be set to 1 to activate SSO
X-Liquit-IdentitySource - Value needs to be the name of the identity source to use for SSO.