Cabinets can be configured to use Imprivata Single Sign On’s server to authenticate users. With this configuration users would be identified through a lookup on Imprivata servers. The system would then lookup security groups for the user in Active Directory (AD). The AD security group would determine whether a user is granted access to the cabinet and also what permissions the user will have in the cabinet.
By default, the following AD user groups are mapped to the specified User Type on the cabinet. If a user belongs to multiple groups, permissions on the cabinets will be mapped to the user type with the highest priority (1 being the highest priority).
| Priority | AD Security Group | Cabinet User Type |
|---|---|---|
| 1 | Cabinet-Admin | Cabinet – Admin |
| 2 | Cabinet-IT | Cabinet – IT |
| 3 | Cabinet-Manager | Cabinet – Manager |
| 4 | Cabinet-Pharmacy | Cabinet – Pharmacy |
| 5 | Cabinet-Nurse | Cabinet – Nurse |
| 6 | Cabinet-Assistant | Cabinet – Assistant |
To use the Imprivata SSO, each cabinet must be properly configured. To access these Settings, choose, “Imprivata Settings” under the “IT Settings” menu.
Imprivata Settings
- URL: https://[Imprivata_server_address]/sso/ProveIDWeb/v1/
AD Settings
- Server: Address for AD server
- Port: LDAP port
- Username: Windows username used for LDAP lookups
- Domain: Domain associated with the above username
- Password: Password associated with the above username
Post your comment on this topic.