When you first log into the ControlUp Console as a new user, you are required to register into ControlUp with your contact details including an email address. A one time passcode is then sent to that email address for verification. There is no need to sign in again into the console once you are verified.
Insights and SOLVE are web applications that can be accessed from the ControlUp console. If accessing from the console links, you don't sign in and can directly access both Insights and SOLVE.
Direct URL Logins
You can also access the Insights and SOLVE web applications though a direct URL. Details on these options below.
Login for Insights
Prerequisites for Direct URL Login to SOLVE
The following are required to use this login approach:
- ControlUp Monitor v8.2 or higher.
- Users must have an Active Directory account to use SOLVE.
- Users must authenticate using their Active Directory account to be authorized in the ControlUp Console and in SOLVE.
Login for SOLVE
The following are the options for logging into SOLVE:
- Using the SOLVE button from the console as described above.
- Direct URL access using either:
- SAML Single Sign On
- LDAP Integration
The ControlUp monitor facilitates communication to the SOLVE instance in the cloud, and serves and authorizes multiple SOLVE users concurrently.
When logging into SOLVE:
- First time access to SOLVE must be from the link in the Console even if you plan on using one of the direct URL methods after that first login.
- Login to SOLVE is possible only for users who are already registered users in the ControlUp Console.
Tip: If you are using SOLVE and want to open a separate window, we recommend using your browser's Duplicate feature to open that second window. You will not be asked to verify your credentials to open that second window.
Go to SOLVE from the Console
Your first access to SOLVE must be from the SOLVE ribbon in the ControlUp Console, and you can always access SOLVE this way from the ControlUp Console. The user accessing SOLVE must have a verified user in the ControlUp Console.
When logging into SOLVE with SAML integration:
- Browse to the SOLVE instance URL, which must include the organization name (e.g. solve.controlup.com/<organization name>). You are redirected to the Identity Provider (IdP) server for authentication (for example: ADFS).
- You submit the credentials that you use for your internal organization's IdP in the IdP's authentication webpage and the IdP server passes the credential for internal authentication.
Logging into SOLVE with LDAP integration uses a two step verification.
- Browse to the SOLVE instance URL that you received by email the first time you opened the ControlUp Console after the upgrade to version 8.2 or higher.
- You are prompted to enter a valid user principle name (UPN).
Note: If you don't know your UPN, go to cmd and enter: whoami /UPN and press enter, and your UPN should appear.
- Go through the one-time password (OTP) verification. The OTP is sent to your registered ControlUp email - the one you used to register to ControlUp.
- After you pass OTP verification, you are prompted to enter your valid Active Directory password and SOLVE opens.
When entering the OTP, you can select Don't ask again on this computer, and skip the OTP verification for 30 days on this computer.
- Make sure that you’re using Chrome or Edge!
- Try clearing your browser cache, then try again.
- Try logging into an incognito (Chrome) or InPrivate (Edge) browser window.
- Make sure that the IP you’re entering to access SOLVE is on your organization’s whitelist.
- Check that if using LDAP, you are entering your UPN and not your ControlUp user email address (even though these may be the same).
Once you have have accessed SOLVE from the console, you can configure SOLVE to be accessible with a SAML or LDAP login. For details, see Configure SOLVE.
To make SOLVE accessible via SAML or LDAP:
- From the lower left corner of the SOLVE dashboard, click the settings button and the Setting screen appears.
- From the box in the upper left corner, select either SAML Single Sign On or LDAP Integration. and the page scrolls to the selected section.
- Enable/disable SAML Single Sign On or LDAP Integration by toggling the Turn on/off buttons in the respective sections and the selected integration is enabled/disabled.
Read here about the details for configuring SAML SSO authentication for SOLVE. The article includes a use case example for configuring ADFS.
Note: If SAML and LDAP are both configured, only the SAML configuration works.
For more information, contact email@example.com