Comply with your security policy by configuring Pega Robot Manager operators to use OAuth 2.0 with SAML bearer to
authenticate across multiple applications with a single set of credentials.
Note: OAuth 2.0 with SAML bearer assertion for single sign-on is not supported for
unattended robots.
OAuth uses token-based authorization to grant operators
access to their Robot Manager without sharing their
credentials. A token is a unique identifier that the authorization server issues. The
OAuth client uses that token to associate the request with the operator. The following
diagram shows the architecture of how tokens are passed and verified when using
OAuth:OAuth 2.0 with SAML bearer architecture
The configuration process for OAuth 2.0 with SAML bearer includes obtaining the
token-signing certificate, setting up the security authorization information in
Pega Platform, and updating the configuration files as
required.
What to do next: Follow these steps to configure single sign-on
authentication through OAuth 2.0 with SAML for Robot Manager
users:
