Configuring SSO and RBAC in OpenEMR

Priya_Singh · July 10, 2025, 10:33am

Hi Team,

I’m currently working with a customer and setting up OpenEMR for them.

SSO Integration:
The customer already has a centralized SSO setup using SAP Customer Data Cloud (SAPCDC). Our task is to integrate OpenEMR with SAPCDC, where authentication is managed via Ping SSO and PingID (supporting SAML, OpenID Connect, and OAuth2). Could you please guide us on how to enable this integration in OpenEMR?

RBAC Integration:
The customer also uses a centralized RBAC system, and we need to integrate our application with it. Specifically, we’d like to map internal OpenEMR roles to the roles defined in the centralized system. Could you advise on how this can be achieved? Are there APIs available in OpenEMR to expose or manage roles that could be leveraged for this purpose?

Looking forward to your guidance.

Best Regards,
Priya Singh

Nilesh_Hake · July 10, 2025, 4:51pm

@Priya_Singh Please take looking into this threat SSO implementation into OpenEMR - #6 by Nilesh_Hake

Priya_Singh · July 15, 2025, 3:09pm

@Nilesh_Hake : I did check the thread, it however does not solve my issue. As I said I am using SAPCDC as an Identity Provider which is configured with PingID Federation. I am more keen to know how can I have the SAML assertion enabled at OpenEMR application.