Retailer Setup in SSO-Enabled Accounts
Author:
Holger Lierse
Changed on:
11 June 2025
Overview
Creating new retailers within an SSO-enabled involves specific considerations to ensure seamless integration and secure user management. This section provides guidelines on how to set up new retailers effectively post-SSO enablement.
Key points
- Active SSO: With SSO activated, the
`*_admin`
user as`RETAILER`
cannot access Fluent OMS via corporate IdP due to external IdP configurations. - User Role Management: Remove existing roles from
`*_admin`
users to restrict access appropriately. - User Creation: Create new users tailored for specific roles.
When up a new in an SSO-enabled environment, follow these essential steps to ensure seamless operation and security:
- Initial Setup and User Role Assignment
- Initiate retailer creation through Fluent OMS using the account user.
- Managing
`*_admin`
User and access- Understand that the
`*_admin`
user, created initially as type`RETAILER`
, cannot access Fluent OMS via corporate IdP post-SSO activation. - Treat the automatically created
`*_admin`
user for the new retailer as transient and limit their access by removing any exisiting roles.
- Understand that the
- User Creation
- Create a new user of type
`API`
specifically for API activities like Postman. Ensure to apply the required roles & permissions for the newly created retailer. - Create a new user of type
`RETAILER`
specifically for OMS related activities. Ensure to apply the required roles & permissions for the newly created retailer. Note that this user must also be set up on the corporate IdP.
- Create a new user of type