Conditionally disable User Consent screen in SSO authentication service
We have a SSO authentication service that is configured to use "User consent" policy type under the Security Policies tab. The same authentication service is used to log into multiple Pega applications, we want to show the consent screen the first time user gets into Pega, but when they go to the second Pega application (using URL mapping and app alias) we want to skip this consent screen for the end user. Looking to see if anyone has any experience conditionally disabling this policy/screen.
Accepted Solution
Updated: 3 Apr 2024 12:27 EDT
Pegasystems Inc.
US
@PranavS10 User consent policy cannot be overridden, the option we would have is to use custom authentication and implement the policy.
Pegasystems Inc.
US
@PranavS10 How do they perform the switch is this via context application switching?
US Food and Drug Administration
US
@AdityaSethiaWe are using an URL mapping rule to build something like shown below, which basically starts a new session for that requestor pointing to the new target application
Which first routes them to the IDP but since there is already an active session on IDP it skips the login page as expected but the user once gets into Pega still sees the User consent screen.
Accepted Solution
Updated: 3 Apr 2024 12:27 EDT
Pegasystems Inc.
US
@PranavS10 User consent policy cannot be overridden, the option we would have is to use custom authentication and implement the policy.