[KBA-79171] Cannot log on to Genetec Mobile, Genetec Web App, or Security Center Web Client with single sign-on when using a private address - Security Center 5.12.0.0

Applies to
Security Center 5.12.0.0
Last updated
2023-12-04
Content type
KB articles
Language
English
Product
Security Center
Version
5.12

[KBA-79171] Cannot log on to Genetec Mobile, Genetec Web App, or Security Center Web Client with single sign-on when using a private address

If a private address is used to access Genetec™ Mobile, Genetec™ Web App, or Security Center Web Client, you must add an entry to the redirect list of your identity provider that contains the private address. The format of the entry is based on the application you are accessing.

If an entry is not added, an error is returned when single sign-on (SSO) is used to log on. For example, if you are using Microsoft Azure, you will receive the following error:

The error message displayed by the identity provider if a user is unable to log on to Genetec Mobile, Genetec Web App, or Security Center Web Client.

Applies to

Security Center 5.12.0.0 and later.

This does not apply to Security Center SaaS edition.

Cause

This behavior is caused by a feature that enables users to configure multiple redirect addresses for each role.

Workaround

Do one of the following:
  • In the redirect list of your identity provider, enter the private address that redirects users to Genetec Mobile, Genetec Web App, or Security Center Web Client using its related format:
    Genetec Mobile https://<privateAddress>/MobileOpenID/reply/
    Genetec Web App https://<privateAddress>/WebAppOpenId/reply/
    Security Center Web Client https://<privateAddress>/SecurityCenterOpenId/reply/
  • Access Genetec Mobile, Genetec Web App, or Security Center Web Client using an address that is already in the redirect list of your identity provider.

Status

This will be resolved in a future version of Security Center.