Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

This release of the Kitewheel hub brings in a new feature of Single Sign-On, fixes a couple of bugs and adds a new security feature. 

Single Sign-On 

Kitewheel now supports Single Sign-On (SSO) for SAML 2.0 identity providers. Please contact Kitewheel Support if you are interested in enabling this for your organisation. 

The addition of single sign-on affects all users in a very simple way. The login screen has now changed to ask for your email address first.

  • If you are a Kitewheel user at an organisation where Kitewheel manages the password then you will be passed to a screen that asks for your Kitewheel password.
  • If your organisation is set up for single sign-on then you will be directed to your familiar SAML identity provider where you will be asked to authenticate using your standard username and password.  

The Kitewheel managed login flow looks like this: 

followed by this screen:

Successful entry of your password will pass you through to the/wiki/spaces/K2/pages/517308632

For the single sign-on managed flow the second screen will take you to your SSO application and on successful login will redirect you to the Kitewheel Home page. 

Changing Your Password

If your organisation passwords are managed by Kitewheel then you can set or reset your password using the "Manage Password" link on the second screen. 

If your organisation usernames and passwords are managed by your identity provider then you should be familiar with the process for resetting your password. This typically does not involve Kitewheel. 

Single Sign-On For Administrators

The configuration of single sign-on with Kitewheel is at the organisation level. All users within the organisation must be authenticated either by Kitewheel or by the SSO identity provider - mixed authentication techniques are not allowed. 

Users are identified within Kitewheel by their email address. It will be necessary to have an email address for each user in the identity provider. 

For the Identity Provider Manager Kitewheel can supply the 

Kitewheel requires the following information to configure SSO for your organisation in the Kitewheel hub: 

  • The sign-on URL 
  • The issuer identifier - this is also typically a URL 
  • The name of the email address field

If you are interested in configuring single sign-on to Kitewheel for your organisation please contact Kitewheel Support


Bug Fixes

This release also fixes the following bugs and security issues: 

  • [KIT-1936] - Security Highest: Username and passwords can not be the same even if the user email is a valid password
  • [KIT-2098] - Rabbit MQ Channels Increase over time - fixes an issue under very high load where Rabbit could run out of channels


  • No labels

Privacy Policy
© 2022 CSG International, Inc.