Auth Settings

Each tenant can customize its authentication behavior, including which identity provider is used by default and how the login page behaves when multiple providers are available.

Accessing Auth Settings

1. Navigate to Tenants and select the tenant.
2. Open the Auth Settings tab.

Default Identity Provider

When a tenant has multiple authentication providers configured, you must designate one as the default IDP. The default IDP determines which provider is used when a user navigates to the tenant’s login page without specifying a provider.

1. In the Auth Settings tab, locate the Default IDP dropdown.
2. Select the desired provider from the list of configured providers.
3. Click Save.

Tip

If a tenant has only one authentication provider, it is automatically used as the default. The Default IDP setting becomes relevant when multiple providers are configured.

Login Behavior

The login behavior setting controls how the login page is presented to users when multiple authentication providers are available.

Available Options

Behavior	Description
Show provider selection	Users see a list of available providers and choose which one to use for authentication.
Auto-redirect to default	Users are automatically redirected to the default IDP without seeing the login page. This provides a seamless SSO experience.

Choosing the Right Behavior

Use provider selection when:

• The tenant has multiple providers and users need to choose between them
• Some users authenticate via OIDC while others use RAMP Internal
• You want to provide fallback options for authentication

Use auto-redirect when:

• The tenant primarily uses a single OIDC or LDAP provider
• You want a seamless single sign-on experience
• All users authenticate through the same provider

Caution

If auto-redirect is enabled and the default IDP becomes unavailable, users will not be able to reach the provider selection page. In this situation, a Tenant Administrator can update the auth settings to restore access.

Session Settings

Auth settings may also include session-related configuration that controls how long user sessions remain valid and when re-authentication is required. These settings affect all users within the tenant regardless of which provider they use.

Applying Changes

After modifying auth settings:

1. Review the configured settings.
2. Click Save to apply changes.
3. Changes take effect immediately for new login attempts. Existing sessions are not affected until they expire.

Note

Auth settings are independent of the authentication providers themselves. You can change the default IDP or login behavior without reconfiguring the providers.

Next Steps

With authentication configured, you can set up SMTP for email notifications, or proceed to manage users and groups within the tenant.

Related topics

Auth Providers Configure per-tenant authentication providers including OIDC, LDAP, and Windows Auth

Tenant Overview Understand multi-tenancy, tenant isolation, and the tenant lifecycle