Curiously, how would I be able to log on using a non-federated user if "SSO" was selected in the CMC under "Home > Users > Single sign on settings" (effectively disabling the login mask) and there was a failure with the SAML authentication service?
Besides, I don't see an option for inviting users on our Dynatrace Manage instance (as suggested in the doc). Is this an exclusive SaaS feature?
As a title says - this doc page refers to SaaS.
For Managed you can only use embedded ‘admin’ account to bypass SSO. Unless you have configured “SSO only”. If that is the case - the only option is to use REST API call to change authentication method or Create a support ticket so we can reset your configuration.
So I tried this and it did not work as expected. The issue is actually around the "Select login page". When I change this to SSO only so that the users are directed to SSO, I'm not seeing a way to change this back to a login prompt in case SAML SSO is unavailable. I tried using the API commands above but no matter if it's set to Internal or LDAP, if I had set the login page to use SSO only, it continues to redirect to the SAML provider. Is there a different API call that will allow me to change the Login Page? This is the real crux of my issue.
1. To get the current configuration:
curl -X GET "https://<yourClusterHosname>/api/v1.0/onpremise/sso/ssoProvider?Api-Token=<Api-Token>" -H "accept: application/json"
2. To update config:
curl -X POST "https://<yourClusterHosname>/api/v1.0/onpremise/sso/ssoProvider?Api-Token=<Api-Token>" -H "accept: application/json" -H "Content-Type: application/json"
That looks promising, however on my system (version 1.168), I'm receiving an HTTP 404 for that API function. I also don't see it listed under the Cluster API page. What version is required for this functionality? This is EXACTLY what I'm looking for so I'm glad it appears that it exists and is coming.