- This line was added.
- This line was removed.
- Formatting was changed.
You need to be a site administrator, or have the appropriate permissions to be able to configure any settings related to Totara Connect.
What is Totara Connect?
Totara Connect is a single - sign-on and user identity solution for multiple Totara instances. Connected sites can share user accounts and logins, allowing for either all users or selected audiences to navigate between the connected site seamlessly using single sign on technology.
It is now possible to connect your multiple Totara LMS or Totara Social sites to a single Totara LMS site that will act as an identity server.
Totara them seamlessly.
Totara Connect requires one Totara LMS Learn site to act as the server. Once Totara Connect has been enabled and configured on the server, it is then possible to start connecting more Totara LMS Learn or Totara Social sites as clients. Once connected the designated users and user collections will be information is then synchronised from the server to the client.
Totara Connect server
Totara Connect server is a self contained plugin , that facilitates the server side aspects of connecting sites effectively, allowing the site to act as a master to which client sites can connect and synchronise.
|Totara Connect server is disabled by default. To enable it you must log in as a site administrator and turn on Enable Totara Connect server,which can be found under Site administration > Advanced features.|
Once enabled a new administration section will become available at Site administration > Users > Accounts > Totara Connect server.
Even when enabled, by itself , the server plugin is inactive. It is not until a second Totara LMS (Learn or Totara Social site ) is connected as a client that the Totara Connect server provides added functionality.
Totara Connect client
The Totara Connect client is an authentication plugin that facilitates a connection between the current site and one or more Totara LMS Learn sites with an active Totara Connect server.Setting up
To be able to add a client to a Totara Connect sever, you first need to enable the Totara Connect client authentication plugin. Go to Site administration > Plugins > Authentication > Manage authentication and enable Totara Connect client by selecting the icon in the Enable column.
Set up a Totara Connect client for TotaraLMS
Once you have enabled the Totara Connect server, you'll then need to configure the Totara Connect client.Log in to the client site as site administrator.
Make sure you have enabled the Totara connect client authentication plugin on the client site first.
In a nutshell:
Finally, add your Totara Connect client to your Totara Connect server.
Configure Totara Connect server settings
Go to Site administration > Users > Accounts > Totara Connect server > Settings.
Sync user passwords
If you want to send user password hashes from your server site to client sites, enable this option.
Configure Totara Connect client settings
Go to Site administration > Plugins > Authentication >Manage authentication.
Enable Totara Connect client by selecting the icon in the Enable column.
Go to Site
Totara Connect client > Settings.
Automatic single sign-on via server
This setting allows you to automatically log on to a Totara Connect client site connected to a specific Totara Connect server. Choose a Totara Connect server to automatically sign-on from. Note that you need to connect to a server first to select it from the list.
Migrate local accounts
When enabled, local accounts are migrated to Totara Connect accounts. Totara Connect accounts can log in only via single sign-on.
You should make sure the selected account mapping cannot be abused by Totara Connect server users to hijack existing client accounts. For example when mapping via username, users should not be allowed to sign up for new accounts on the Totara Connect server.
Choose the field you want to use to map user accounts by during migration. You should make sure this field is locked and cannot be modified by ordinary users or customised during user self registration, both on the server and clients.
User fields available are:
- Email address
- ID number
- Totara Connect unique ID
Action to take when a user is removed from the restricted audience
If your Totara Connect users are restricted to an audience on the server, this setting determines what happens with local accounts when the user is removed from that audience on the server.
- Keep internal user
- Suspend internal user
- Full delete internal user
Please note that any synchronised users who are deleted from the server will also be deleted from the local site.
Connect to a Totara Connect server
Go to Site administration > Plugins > Authentication > Manage authentication > Totara Connect client > Servers.
and select Connect to new server.
|Note down the Client url and Client setup secret as you'll need this information to complete the setup.|
Add a Totara Connect client
Log in as a site administrator to the site which is acting as the Totara Connect server.
, go to Site administration > Users > Accounts > Totara Connect server > Client systems and select Add client.
Click Add client.
Enter a name for
If you want to only add
the client site.
The URL of the client site. This should be the URL provided when connecting to a new server.
|Client setup secret|
The setup secret for the client site. This should be the client setup secret provided when connecting to a new server.
|Restrict to audience|
You can choose to only synchronise users from a specific audience from the Totara Connect server to
the Totara Connect client site
If you want to synchronise users who have enrolled in selected course(s), click the Add course button and choose the course(s) you want to add.
All enrolled users in synced courses irrespective of role or enrolment method will be added as an audience in the Totara Client site.
Once complete, click Add client.
. The restriction is applied to all synchronised audiences and courses too i.e. only the audience restricted gets synchronised.
|Add new courses|
If enabled, each new course created in the LMS will be synchronised with the client to create a matching new group (Totara Social) or audience (Totara Learn). The enrolled users of the courses will be added as members to the respective groups or audiences created.
|Add new audiences|
If enabled, each new audience created in the LMS will be synchronised with the client to create a new group (Totara Social) or audience (Totara Learn). The members of the audiences are added as members to the respective groups or new audiences.
Choose one or more audiences and synchronise members to the client site.
Choose one or more courses and synchronise all enrolled users to the client site.
|Comment||Add any applicable comments related to the client site.||-|
Once complete, select Add client. You'll now see that there is an active connection between the server and the clientsites
site and a new option will become available on the login page of the client site.Setting
Set up Totara Connect client for Totara Social
To set up a Totara Connect client for Totara Social please see the Totara Social 2.0 documentation for further information.
in a Totara ConnectClient
- Login Navigate to the server client site .Type in the address of the Client sitein your browser.
- Select Log in using your account on:[Server site name].This will create an account If you're not already logged into the Totara Connect server site, you'll be prompted to log in.
- An account will be created on the server site if it doesn't exist and copy over all the user's profile fields with the exception of
Profile image - these need uploading
Interests - of:
- Hierarchy fields
- e.g. position, organisation,
- Custom profile
- (this is automatically generated by Totara Connect
- and starts with letters "tc").
- ID number
- (used by
- HR Import).
Totara Connect scheduled tasks
If you're new to scheduled tasks, see our dedicated page for more information about how they work.
General cleanup task
This task runs internal clean up tasks required by the Totara Connect client.
User collections sync task
This task checks the server for audience groups that are scheduled to be synced and recreates those audiences on the client.
Users sync task
This task syncs all information related to the individual users. This includes profile field data but excludes user custom field data, profile images and position assignment data.