Product Documentation

Nearmap Delegated Authentication

Nearmap Delegated Authentication
Delegated Authentication allows your users to authenticate against your organization's Identity Access Management solution instead of using Nearmap credentials. Users will be able to use the same credentials they use to access applications within your organization. With the optional Just-In-Time (JIT) Provisioning, new…
Manage Domains
You can add any number of your organization's domains to MyAccount and verify each one before you assign a connection to a domain. Assignments determine whether a user authenticates with Nearmap credentials or via one of your connections. This is based on the domain of the user's email address. Once you assign a connection…
Supported Integrations
Supported integrations Nearmap supports integration with: Microsoft Azure AD Microsoft AD FS Okta NOTE: Nearmap can integrate with other IdPs if they support WS-Federation or SAML-P/SAML 2 protocol. When configuring the integration we recommend that you choose the SHA-256 hashing algorithm if your IdP supports it.
Setup Overview
Steps in the setup Step Description 1. Choose a connection-id that's unique to your account. 2. Create a connection to Nearmap in your IdP. 3. Create the connection to your IdP in MyAccount. 4. Test the connection and fix any problems. 5. Add and verify email domains. 6. Assign verified domains to the connection to enable…
Add and Verify a Domain
On the Account, Authentication tab, click ADD DOMAIN. The Add domain dialog is displayed. In the Domain field, type your organization's domain name. Click SAVE & CONTINUE. The Verify dialog is displayed with a TXT verification code. Copy the verification code. Verifying a domain Paste the copied verification code into your…
Microsoft AD FS
This article is intended for network administrators who have experience setting up Microsoft AD FS with WS-Federation authentication. It outlines how to set up and establish a connection with Nearmap. Setting up AD FS Exact setup details may be slightly different for your version of AD FS. Create a Relying Party Trust…
Set Up a Connection
Delegated Authentication allows users in your organization to authenticate against your organization's Identity Access Management solution (also referred to as Identity Provider or IdP) instead of using Nearmap credentials. Users will be able to use the same credentials they use to access applications within your…
View and Edit Domains
Viewing domains All domains you have added are listed under YOUR DOMAINS. For each domain row, you will see: Domain name Connection ID assigned to the domain Number of users assigned to the connection Status of the domain - Verified, Unverified or Failed (failed verification) At the end of each row, a context menu is…
Microsoft Azure AD
This article is intended for network administrators who have experience setting up Azure AD applications with SAML 2.0 authentication. It outlines how to set up, test and establish a connection with Nearmap products. For detailed information about each of the steps outlined below, see the instructions below. Setting up…
Test a Connection
Once a connection has been created in MyAccount, we recommend that you test the integration with your IdP before completing the Delegated Authentication setup. MyAccount allows you to test whether a user will be able to sign in to Nearmap applications, and whether a new user can be provisioned to access Nearmap…