User-password application scripting guide
|
|
- Claude Taylor
- 8 years ago
- Views:
Transcription
1 Chapter 2 User-password application scripting guide You can use the generic user-password application template (described in Creating a generic user-password application profile) to add a user-password web application to the Samsung SDS CellWe EMM application catalog. This template creates a user-password application profile for a web application that defines how the cloud service logs an authenticated user on to the web application via an HTML reply form containing user and password information. Each user-password application profile requires a custom user-password script. The script defines how the cloud service creates an HTML response to log on for each user s session with the web application. Each application profile may also provide an optional user map script that determines the user s application log-on name and password for use in the HTML response. Both scripts are written in JavaScript. This guide provides these sections: User-password authentication overview is an overview of the user-password authentication process for a user session with a web application. It shows how the cloud service works with a set of JavaScript objects during the process. Writing a user map script describes how you can write an optional user map script to specify an application user log-on name and password for a user session. Writing a custom user-password script describes how to write the required custom user-password script to define an HTML response that authenticates the user for a user session. Scripting environment reference is a reference section for the objects, methods, and variables in the user map and user-password scripting environment. To write a custom user-password script, you need to know how to write code in JavaScript. For the vast majority of user-password web applications, the script is simple and you won t need to do anything more than what s described in Creating a generic user-password application profile. This guide is for the unusual application that might require more. User-password authentication overview When the cloud service authenticates a user to a user-password web application, the cloud service creates an HTML response for the user session that satisfies the requirements of the 1157
2 User-password authentication overview web application and presents necessary information about the current user. The following figure shows user-password authentication steps. Step descriptions follow. 1 The user clicks the web application in the user portal. 2 The user portal notifies the cloud service that the user wants a session with the web application. 3 The cloud service creates a set of JavaScript objects for this user-password user session: An Application object that contains the properties of the web application as they re defined in the web application profile. Those properties are defined using the generic user-password application template and include the application name, the URL, the icon, and others that appear in the template in the Admin Portal. The Application object is a read-only object. A script reads its properties through the object s Get() method. A LoginUser object that contains information about the user identity used to log onto the service provider: the web application log-on user name (which is not necessarily the user portal login user name) and so on. This is a read-write object that may be altered before it s used later in the custom user-password script to set the user name and password in the HTML response. A response object that defines the elements of the HTML response that the cloud service builds to send to the web application. The response object is a read/write object that the custom user-password script sets using the object s AddFormField() method. 4 The cloud service determines the web application log-on user name and password as specified in the generic user-password application template.the template specifies any one of these four methods: Cloud Manager user s guide 1158
3 User-password authentication overview The cloud service checks the user s Active Directory user record through the cloud connector and retrieves the specified attribute as the application user name. It prompts the user for the password. The cloud service then assigns the user name to the LoginUser.Username property and the password to the LoginUser.Password property. The cloud service caches the returned user-name attribute so that it doesn t have to retrieve it again from Active Directory for later identical queries. The cloud service also stores the password locally so the user need not enter it again for future user sessions with this application. The cloud service reads the shared single user name and password specified in the template and assigns them to LoginUser.Username and LoginUser.Password. The cloud service prompts the user for the web application log-on user name and password and assigns them to LoginUser.Username and LoginUser.Password. The cloud service stores the user name and password locally so the user need not enter them again for future sessions with this application. The cloud service executes the user map script set in the template, which creates a user name and assigns it to LoginUser.Username. The script may also create an optional password and assign it to LoginUser.Password. The cloud service prompts the user for a password in any case. If the script doesn t create its own password, the cloud service writes the entered password to LoginUser.Password and also stores the password locally so that the user need not enter it again for future sessions with this application. If the script creates its own password, the cloud service ignores the user s entered password. 5 The cloud service executes the custom user-password script to specify an HTML response for the user session. The script must include all the HTML response fields required by the web application and must provide appropriate values for those fields. Most applications require only a user field and a password field, but a few may require additional fields. The script uses response.addformfield() to define the elements in the private assertion object. 6 The cloud service creates an HTML response based on the properties of the response object. 7 The cloud service sends the HTML response to the user portal (or the browser running it). The HTML response includes a redirection that instructs the user portal to send the response to the web application at the URL specified in the web application s profile. The profile must contain a standard URL (set in the URL field of the generic userpassword application template) and may also contain a mobile URL (set in the Mobile URL field). If the request for connection comes from a mobile device, the cloud service redirects the HTML response to the mobile URL if one exists, otherwise the cloud service redirects the response to the standard URL. If the request for connection is not from a mobile device, the cloud service redirects the response to the standard URL. Chapter 2 User-password application scripting guide 1159
4 Writing a user map script 8 The user portal sends the HTML response to the specified URL. 9 The web application reads the HTML response and then (if the response checks out) logs the user onto the web application. Writing a user map script The user map script is JavaScript that you may create as an optional way to determine the user name and password used to log onto a web application. Entering a user map script To enter the user map script in the Application Settings tab of the generic user-password application template: 1 Under Account Mapping, select Use Account Mapping Script to open the user map script text panel. 2 Enter the script in the text panel. Incorrect JavaScript syntax in a line triggers a yellow symbol before the line number. 3 (Optional) Click Test. The Test Results window opens showing Account Mapping Details and the results of a Trace of the script. The Account Mapping Details list displays the attributes of the mapped LoginUser. 4 Click Save Changes. Read Creating a generic user-password application profile for more information about using the generic user-password application template. User map script elements The user map script is an optional way to determine the user name and password to present to a web application. Use it if the other user-mapping options won t provide what s required. Your script can examine current application and user properties for this user session and can use that information and any other factors to create a user name and password. The user map script must, at some point, assign a user name to the LoginUser.Username property. It may also assign a password to the LoginUser.Password property, but it s not required. If the script doesn t create and assign a password, the cloud service gets the password by requesting it from the user. It then assigns the password to the LoginUser.Password property. Cloud Manager user s guide 1160
5 Writing a user map script Retrieving application information If the user map script requires information about the current web application, it can retrieve properties from the Application object created for this user session. The method Application.Get() retrieves those properties. It takes as its argument a string that specifies the property whose value to retrieve. Application( Name ), for example, retrieves the name of the application. The Application object describes all of the Application object s properties that you may retrieve. These properties aren t typically used for determining a user name and password, although the application name may sometimes be useful. Retrieving LoginUser properties If the user map script requires information about the current user settings, it can examine the properties of the LoginUser object created for this user session. The LoginUser object describes the LoginUser properties. Several of these properties (LoginUser.GroupNames, for example) contain an array of group names of which the user is a member. These might be useful, depending on your requirements, for determining a user name. You might, for example, specify a single user name and password for anyone belonging to the admin group, and specify another single user name and password for anyone belonging to the sales group. Retrieving the user s Active Directory attributes The LoginUser object offers a single method, Get(), that can retrieve any one of the current user s Active Directory attributes. It takes as its argument a string that specifies the key of the attribute to retrieve. LoginUser.Get( mail ), for example, returns the user s address as stored in Active Directory. When LoginUser.Get() executes, the cloud service contacts Active Directory through the cloud connector for the user s organization and retrieves the attribute. If, for example, a user has logged into the user portal as a member of the Acme organization, executing LoginUser.Get() during one of that user s log-on sessions contacts the Acme Active Directory service through the cloud connector set up in Acme s internal network. Specifying the user log-on name Once your script has created a web application log-on name as a string value, it must assign the name to the LoginUser.Username property. The script can assign the user name string directly to the property. Specifying the password The script is not required to create a password, and often does not. If it does create a password as a string value, it must assign the password to the LoginUser.Password property so the custom user-password script can read the password later. Chapter 2 User-password application scripting guide 1161
6 Writing a custom user-password script If the script doesn t assign a password value to LoginUser.Password, the cloud service determines the password value by asking the user for the password. The cloud service then assigns the user-provided password to LoginUser.Password. The cloud service also saves the password so that the user doesn t need to re-enter the password for later user sessions with the application. An example script This sample user map script creates a user name by adding the application name to the current user name in Active Directory. The script assigns the result to LoginUser.Username. LoginUser.Username = LoginUser.Get( user ) + # + Application.Get( Name ); When the user whose AD account is barney.blanton wants to log into the web application named Busfare, the script creates the user name barney.blanton#busfare. The script assigns the user name to LoginUser.Username, where the custom user-password script will find the user name later and use it for the HTML response. Because the script does not create and assign a password to LoginUser.Password, the cloud service uses the password it receives when it prompts the user. The cloud service assigns the password to LoginUser.Password and then stores the password locally for later user sessions. Writing a custom user-password script The custom user-password script specifies elements that must be present in the HTML response that starts the current user session with a web application. To write the script, you must know what HTML response fields the web application requires. The script must retrieve required information from the web application s profile and the user object, and must then specify the response fields and their values using the response.addformfield() method. After the script executes, the cloud service follows the script s specifications to create an HTML response. The custom user-password script is JavaScript. Each generic user-password application profile requires a custom user-password script. Entering a custom user-password script To enter the custom user-password script in the Advanced tab of the generic user-password application template: 1 Click Edit. 2 Enter the advanced script in the text panel, replacing the existing script or using it as a template script. Cloud Manager user s guide 1162
7 Writing a custom user-password script Incorrect JavaScript syntax in a line triggers a yellow symbol before the line number. Although the text panel offers this simple JavaScript support, if you re writing a script of any length you may want to use a specialized JavaScript editor and paste the results into the text panel. Note The template script present in the text panel by default will in almost all cases not work as a custom user-password script for a web application. You must modify or replace the script to meet the specific response field requirements of the web application. 3 (Optional) Click Test. The Advanced Script Results window opens showing SSO Token details and the results of a trace of the script. The SSO token is generated by the Admin Portal for the user to log in to the web application. 4 Click Save Changes. Read Creating a generic user-password application profile for more information about using the generic user-password application template. Determining HTML response requirements for the web application Each user-password web application typically requires its own set of fields in an HTML response. The help text for the generic user-password application template describes how to use a browser to discover these fields in Discovering the login URL and form data fields. You may also use other HTML POST analysis tools to discover required fields. Most user-password applications require only a user name field and a password field. Each application typically uses its own pair of field names for these fields, though, so it takes some customization to correctly set up the custom user-password script. The POST analysis may reveal extra required fields for a very few user-password applications. You may be able to guess what these fields must contain by their names and supply the proper values, but if not you ll need to contact the web application service provider s technical support or development team to ask for details. Retrieving information To retrieve information, the custom user-password script has access to the same JavaScript objects and global variables used in the user map script. Retrieving application information The read-only Application object created by the cloud service for a user session contains the properties defined in the application profile. Create a web application s profile using the generic user-password application template in the Admin Portal (described in Creating a generic user-password application profile). You must set appropriate application properties Chapter 2 User-password application scripting guide 1163
8 Writing a custom user-password script in the application profile before the custom user-password script can retrieve application properties successfully. The method Application.Get() retrieves application properties. It takes as its argument a string that specifies the property whose value to retrieve. Application.Get( Name ), for example, retrieves the name of the application. The Application object describes all the Application object s properties that you can retrieve. The following table shows two of the most useful application properties for userpassword information. Note that these property names are case-sensitive. Note also that one of the properties has a synonymous global variable that you can use in place of using Application.Get(). Property name Name Url The name of the application as entered in the Application Settings tab. The contact URL for the HTML response as specified in the URL field in the Application Settings tab. Synonymous with the global variable ServiceUrl. Retrieving LoginUser properties The properties of this user session s LoginUser object provide information about the user being authenticated for this user session. The following table describes the properties. Property name LoginUser.Username LoginUser.Password LoginUser.GroupNames LoginUser.EffectiveGroupN ames LoginUser.GroupDNs LoginUser.EffectiveGroupD Ns The username used to log the current user on to the web application. The cloud service determines the username for this user session depending on the Map to user Accounts setting in the Application Settings tab. This property is synonymous with the global variable UserIdentifier. The password used to log the current user on to the web application. The cloud service determines the password for this user session depending on the Map to user Accounts setting in the Application Settings tab. An array of group names for groups in which the user is a direct member (according to the user s Active Directory account). An array of group names for groups in which the user is an effective member (according to the user s Active Directory account). A user is an effective member of a group if he is either a direct member of the group or is a direct member of a group that is in turn a member of the group. An array of distinguished names for groups in which the user is a direct member. An array of distinguished names of groups in which the user is an effective member. Retrieving the user s Active Directory attributes The LoginUser object offers a single method, Get(), that can retrieve any one of the current user s Active Directory attributes. It takes as its argument a string that specifies the Cloud Manager user s guide 1164
9 Writing a custom user-password script name of the attribute to retrieve. LoginUser.Get( mail ), for example, returns the user s address as stored in Active Directory. When LoginUser.Get() executes, the cloud service contacts Active Directory through the cloud connector for the user s organization and retrieves the attribute. If, for example, a user has logged into the user portal as a member of the Acme organization, executing LoginUser.Get() during one of that user s log-on sessions contacts the Acme Active Directory service through the cloud connector set up in Acme s internal network. Defining HTML response fields To define HTML response fields and set their values, use the response.addformfield() method. It s a simple method that takes two arguments: fieldname, a string that defines the name of a field to add to the HTML response. fieldvalue, a string that defines the value presented in this HTML response field. When executed, response.addformfield() adds the defined field and its value to the response object. The cloud service reads the response object s field definitions when it s time to connect to the web application and creates an HTML response with those fields and their values. It s best to supply the fieldvalue string by processing it through the global method encode(). This method ensures that the string is HTML-safe by properly encoding any special symbols such The following example adds a field named username-field and sets its value to the current value of LoginUser.Username. The example uses encode() to ensure that whatever value is supplied is HTML safe: response.addformfield("username-field", encode(loginuser.username)); The custom user-password script should at least define a user-name field and a password field using whatever field names the web application requires. If the application requires additional fields, use response.addformfield() to name those fields and set their values. You ll find the response object and encode() method both described in Scripting environment reference. Using the custom user-password script template You can use the sample user-password script in the Advanced tab as a template for your own custom user-password script. The first two lines set values for the fields username-field and password-field, which are probably not the field names required by a specific userpassword web application. Simply replacing those field names with the field names an application requires will satisfy most applications. The third and forth lines add a third and fourth field to the response, which probably aren t necessary. You can delete them if they aren t. If an application requires additional fields, modify these lines with the required field names and values. Chapter 2 User-password application scripting guide 1165
10 Scripting environment reference To see further examples of custom user-password scripts, select any already-defined userpassword application profile in the Apps panel of the Admin Portal, then view its Advanced tab. The tab displays the custom script used to connect to that application. Scripting environment reference The cloud service creates a set of JavaScript objects, global variables, and global methods for each user-password user session. These objects provide information that a user map script or a custom user-password script can read and act on. Some of the objects also accept values that specify elements with the HTML response that the cloud service presents to a web application. This section describes the user-session JavaScript environment in which the user map script and the custom user-password script execute. The section describes each available object and its public properties and methods. It also describes available global variables and global methods. The LoginUser object The cloud service creates a single LoginUser object for each user session for a userpassword web application. The object is an instance of the LoginUser class, and is a read/ write object. The LoginUser object s properties describe the user as he or she is presented to the web application. The following table describes those properties. Property name LoginUser.Username LoginUser.Password LoginUser.GroupNames LoginUser.EffectiveGroupN ames LoginUser.GroupDNs LoginUser.EffectiveGroupD Ns The username used to log the current user on to the web application. The cloud service determines the username for this user session depending on the Map to User Accounts setting in the Application Settings tab. The password used to log the current user on to the web application. The cloud service determines the password for this user session depending on the Map to User Accounts setting in the Application Settings tab. This property is synonymous with the global variable LoginPassword. An array of group names for groups in which the user is a direct member (according to the user s Active Directory account). An array of group names for groups in which the user is an effective member (according to the user s Active Directory account). A user is an effective member of a group if he is either a direct member of the group or is a direct member of a group that is in turn a member of the group. An array of distinguished names for groups in which the user is a direct member. An array of distinguished names of groups in which the user is an effective member. Cloud Manager user s guide 1166
11 Scripting environment reference The LoginUser object has a single method that a script may call: Method name LoginUser.Get(ADkey) This method returns any one of the current user s Active Directory attributes. It takes as its argument a string that specifies the key of the attribute to retrieve. An example: LoginUser.Get( mail ) returns the user s address as stored in the user s Active Directory account. The Application object The cloud service creates a single Application object for each user session for a userpassword web application. The object is an instance of the ReadOnlyDataEntity class, and is a read-only object. The Application object s properties describe the web application as it s defined in the application profile. You create a web application s profile in the Admin Portal using the generic user-password application template (described in Creating a generic user-password application profile). The Application object does not have any publicly accessible properties. The script accesses the object s properties using the object s single public method, Application.Get(). Method Name Application.Get(property) The following section describes the property arguments this method can take. Application properties This method returns an Application object property. It takes as its argument a string that specifies the property to return. An example: Application.Get( Name ) returns the name of the application as entered in the Application Settings tab. The Application.Get() method may take the following property names as an argument. Each argument returns a different application property. The property names are casesensitive. Property Name _PartitionKey _RowKey Icon Name The customer ID used to establish the user session. An example: BZ284. The UUID (universally unique identifier) of the application. The text description of the web application entered in the description field of the Application Settings tab. The graphic file used as the icon for this application as set in the Application Settings tab. The name of the application as entered in the Application Settings tab. Chapter 2 User-password application scripting guide 1167
12 Scripting environment reference Property Name TemplateName Url UserName Strategy UserPassScript WebAppType The type of generic application template used to define this web application s profile. Possible return values: Generic SAML Generic User-Password The contact URL specified in the URL field in the Application Settings tab. Synonymous with the global variable ServiceUrl. The technique specified in the Application Settings tab to determine the user name for a user session. Possible return values: ADAttribute: the cloud service sets the user name to the specified AD attribute of the current user. If this is a user-password web application, the cloud service asks the user to enter a password the first time the user asks for a connection to this web application. The cloud service stores the password for subsequent connections. Fixed: the cloud service sets the user name to the value entered in the Application Settings tab. If this is a user-password web application, this technique also sets the password to the value entered in the Application Settings tab. SetByUser: the cloud service asks the user to enter a user name the first time the user asks for a connection to this web application. If this is a user-password web application, the cloud service also asks for a password. The cloud service stores the user name (and password if applicable) for subsequent connections. UseScript: the cloud service executes the user map script to determine the user name. The custom user-password script set in the Advanced tab. The authentication method used by the web application. Possible return values: SAML UsernamePassword The response object The cloud service creates a single response object for each user session for a user-password web application. The object is an instance of the WebSignInResponse class and is a readwrite object. The response object defines the HTML response that the cloud service creates to send to the web application. The object does not have any publicly accessible properties. The script Cloud Manager user s guide 1168
13 Scripting environment reference defines HTML response fields using the object s single public method, response.addformfield(). Method Name response.addformfield( fieldname, fieldvalue) An example of setting an HTML response field: This method defines an HTML response field to add to the HTML response for this user session. The method takes as its first argument a string that specifies the property to return. Its arguments are: fieldname, a string that defines the name of the HTML response field. fieldvalue, a string that defines the value presented in the HTML response field. It s best to supply this string processed through the global method encode(), which ensures that the string is HTML-safe by properly encoding any special symbols such response.addformfield("username", encode(loginuser.username)); This example adds an HTML response field named username and sets its value to the current user name specified in the LoginUser object. The encode() method ensures that there are no non-html-compliant characters in the string returned by the attribute LoginUser.Username. Global variables The cloud service creates a set of global variable for each user session. These variables are synonyms for common attributes of the LoginUser and Application objects, and are a convenience: you can use a global variable instead of specifying a LoginUser attribute or using Application.Get() to read an Application attribute. Global Variable ApplicationUrl LoginPassword ServiceUrl A read-only variable that contains the contact URL specified in the URL field in the Application Settings tab. Synonymous with the Application attribute Url. A read-write variable that contains the password used to log the current user on to the web application, used only for a user-password application. The cloud service determines the password for this user session depending on the Map to User Accounts setting in the Application Settings tab. Synonymous with the attribute LoginUser.Password. A read-only variable that contains the contact URL specified in the URL field in the Application Settings tab. Synonymous with the Application attribute Url. Chapter 2 User-password application scripting guide 1169
14 Scripting environment reference Global functions The cloud service provides global functions available in a user session for a user-password application. Function Name encode(stringvalue) Hash(stringvalue, hashalgorithm, x2 ) This function takes a string as its argument and returns an HTML-safe version of the string for transmission via HTML. It converts each non- HTML-safe character into a string that the receiver will interpret as the original character. This function takes a string and hash algorithm as arguments and returns a hash in the specified algorithm. Supported algorithms are: SHA-1 SHA-256 MD5 For example: var hashedvalue = Hash("raw_string", "sha256", "x2"); Cloud Manager user s guide 1170
SAML application scripting guide
Chapter 151 SAML application scripting guide You can use the generic SAML application template (described in Creating a custom SAML application profile) to add a SAML-enabled web application to the app
More informationCreating a generic user-password application profile
Chapter 4 Creating a generic user-password application profile Overview If you d like to add applications that aren t in our Samsung KNOX EMM App Catalog, you can create custom application profiles using
More informationConfiguring. SugarCRM. Chapter 121
Chapter 121 Configuring SugarCRM The following is an overview of the steps required to configure the SugarCRM Web application for single sign-on (SSO) via SAML. SugarCRM offers both IdP-initiated SAML
More informationSP-initiated SSO for Smartsheet is automatically enabled when the SAML feature is activated.
Chapter 87 Configuring Smartsheet The following is an overview of the steps required to configure the Smartsheet Web application for single sign-on (SSO) via SAML. Smartsheet offers both IdP-initiated
More informationAn overview of configuring Intacct for single sign-on. To configure the Intacct application for single-sign on (an overview)
Chapter 94 Intacct This section contains the following topics: "An overview of configuring Intacct for single sign-on" on page 94-710 "Configuring Intacct for SSO" on page 94-711 "Configuring Intacct in
More informationConfiguring Parature Self-Service Portal
Configuring Parature Self-Service Portal Chapter 2 The following is an overview of the steps required to configure the Parature Self-Service Portal application for single sign-on (SSO) via SAML. Parature
More informationConfiguring SuccessFactors
Chapter 117 Configuring SuccessFactors The following is an overview of the steps required to configure the SuccessFactors Enterprise Edition Web application for single sign-on (SSO) via SAML. SuccessFactors
More informationSAML single sign-on configuration overview
Chapter 34 Configurin guring g Clarizen Configure the Clarizen Web-SAML application profile in Cloud Manager to set up single sign-on via SAML with Clarizen. Configuration also specifies how the application
More informationAn overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)
Chapter 190 WebEx This chapter includes the following sections: "An overview of configuring WebEx for single sign-on" on page 190-1600 "Configuring WebEx for SSO" on page 190-1601 "Configuring WebEx in
More informationAn overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)
Chapter 83 WebEx This chapter includes the following sections: An overview of configuring WebEx for single sign-on Configuring WebEx for SSO Configuring WebEx in Cloud Manager For more information about
More informationConnected Data. Connected Data requirements for SSO
Chapter 40 Configuring Connected Data The following is an overview of the steps required to configure the Connected Data Web application for single sign-on (SSO) via SAML. Connected Data offers both IdP-initiated
More informationConfiguring Salesforce
Chapter 94 Configuring Salesforce The following is an overview of how to configure the Salesforce.com application for singlesign on: 1 Prepare Salesforce for single sign-on: This involves the following:
More informationSAP NetWeaver AS Java
Chapter 75 Configuring SAP NetWeaver AS Java SAP NetWeaver Application Server ("AS") Java (Stack) is one of the two installation options of SAP NetWeaver AS. The other option is the ABAP Stack, which is
More informationConfiguring. SuccessFactors. Chapter 67
Chapter 67 Configuring SuccessFactors The following is an overview of the steps required to configure the SuccessFactors Enterprise Edition Web application for single sign-on (SSO) via SAML. SuccessFactors
More informationSAP NetWeaver Fiori. For more information, see "Creating and enabling a trusted provider for Centrify" on page 108-10.
Chapter 108 Configuring SAP NetWeaver Fiori The following is an overview of the steps required to configure the SAP NetWeaver Fiori Web application for single sign-on (SSO) via SAML. SAP NetWeaver Fiori
More informationSAML single sign-on configuration overview
Chapter 46 Configurin uring Drupal Configure the Drupal Web-SAML application profile in Cloud Manager to set up single sign-on via SAML with a Drupal-based web application. Configuration also specifies
More informationConfiguring on-premise Sharepoint server SSO
Chapter 112 Configuring on-premise Sharepoint server SSO You can now provide single sign-on to your on-premise Sharepoint server applications. This section includes the following topics: "An overview of
More informationConfiguring. Moodle. Chapter 82
Chapter 82 Configuring Moodle The following is an overview of the steps required to configure the Moodle Web application for single sign-on (SSO) via SAML. Moodle offers SP-initiated SAML SSO only. 1 Prepare
More informationFor details about using automatic user provisioning with Salesforce, see Configuring user provisioning for Salesforce.
Chapter 41 Configuring Salesforce The following is an overview of how to configure the Salesforce.com application for singlesign on: 1 Prepare Salesforce for single sign-on: This involves the following:
More informationThe Customer page is only displayed in Admin Portal on Managed Service Provider accounts. It is not displayed in customer accounts.
Chapter 9 Managing customer cloud services The Customers page lists the cloud services you have created for your customers and their status. You use this page to perform the following tasks: Create a new
More informationSharepoint server SSO
Configuring g on-premise Sharepoint server SSO Chapter 99 You can now provide single sign-on to your on-premise Sharepoint server applications. This section includes the following topics: "An overview
More informationMicrosoft Office 365 Using SAML Integration Guide
Microsoft Office 365 Using SAML Integration Guide Revision A Copyright 2013 SafeNet, Inc. All rights reserved. All attempts have been made to make the information in this document complete and accurate.
More informationConfiguring the Samsung SDS CellWe EMM cloud connector
Appendix 3 Configuring the Samsung SDS CellWe EMM cloud connector This appendix explains how to use the Samsung SDS CellWe EMM cloud connector configuration program to configure and monitor your cloud
More informationNevepoint Access Manager 1.2 BETA Documentation
Nevepoint Access Manager 1.2 BETA Documentation Table of Contents Installation...3 Locating the Installation Wizard URL...3 Step 1: Configure the Administrator...4 Step 2: Connecting to Primary Connector...4
More informationManaging policies. Chapter 7
Chapter 7 Managing policies You use the Policies tab in Admin Portal to create policy sets for roles. A policy set lets you configure the following categories of policies: Mobile Device Policies Use to
More informationHow to pull content from the PMP into Core Publisher
How to pull content from the PMP into Core Publisher Below you will find step-by-step instructions on how to set up pulling or retrieving content from the Public Media Platform, or PMP, and publish it
More informationOffice 365 deployment checklists
Chapter 128 Office 365 deployment checklists This document provides some checklists to help you make sure that you install and configure your Office 365 deployment correctly and with a minimum of issues.
More informationHow To Use Saml 2.0 Single Sign On With Qualysguard
QualysGuard SAML 2.0 Single Sign-On Technical Brief Introduction Qualys provides its customer the option to use SAML 2.0 Single Sign On (SSO) authentication with their QualysGuard subscription. When implemented,
More informationConfiguring user provisioning for Amazon Web Services (Amazon Specific)
Chapter 2 Configuring user provisioning for Amazon Web Services (Amazon Specific) Note If you re trying to configure provisioning for the Amazon Web Services: Amazon Specific + Provisioning app, you re
More informationSamsung KNOX EMM Authentication Services. SDK Quick Start Guide
Samsung KNOX EMM Authentication Services SDK Quick Start Guide June 2014 Legal notice This document and the software described in this document are furnished under and are subject to the terms of a license
More informationConfiguring ADFS 3.0 to Communicate with WhosOnLocation SAML
Configuring ADFS 3.0 to Communicate with WhosOnLocation SAML --------------------------------------------------------------------------------------------------------------------------- Contents Overview...
More informationEgnyte Single Sign-On (SSO) Installation for OneLogin
Egnyte Single Sign-On (SSO) Installation for OneLogin To set up Egnyte so employees can log in using SSO, follow the steps below to configure OneLogin and Egnyte to work with each other. 1. Set up OneLogin
More informationCA Nimsoft Service Desk
CA Nimsoft Service Desk Single Sign-On Configuration Guide 6.2.6 This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to as the Documentation
More informationUsing Foundstone CookieDigger to Analyze Web Session Management
Using Foundstone CookieDigger to Analyze Web Session Management Foundstone Professional Services May 2005 Web Session Management Managing web sessions has become a critical component of secure coding techniques.
More informationPortal User Guide. Customers. Version 1.1. May 2013 http://www.sharedband.com 1 of 5
Portal User Guide Customers Version 1.1 May 2013 http://www.sharedband.com 1 of 5 Table of Contents Introduction... 3 Using the Sharedband Portal... 4 Login... 4 Request password reset... 4 View accounts...
More informationSchoolBooking SSO Integration Guide
SchoolBooking SSO Integration Guide Before you start This guide has been written to help you configure SchoolBooking to operate with SSO (Single Sign on) Please treat this document as a reference guide,
More informationInstallation & Configuration Guide Professional Edition
Installation & Configuration Guide Professional Edition Version 2.3 Updated January 2014 Table of Contents Getting Started... 3 Introduction... 3 Requirements... 3 Support... 4 Recommended Browsers...
More informationAuthentication and Single Sign On
Contents 1. Introduction 2. Fronter Authentication 2.1 Passwords in Fronter 2.2 Secure Sockets Layer 2.3 Fronter remote authentication 3. External authentication through remote LDAP 3.1 Regular LDAP authentication
More informationIntegrations. Help Documentation
Help Documentation This document was auto-created from web content and is subject to change at any time. Copyright (c) 2016 SmarterTools Inc. Integrations WHMCS SmarterTrack Provisioning Module Package
More informationWorking with Indicee Elements
Working with Indicee Elements How to Embed Indicee in Your Product 2012 Indicee, Inc. All rights reserved. 1 Embed Indicee Elements into your Web Content 3 Single Sign-On (SSO) using SAML 3 Configure an
More informationSCADA Security. Enabling Integrated Windows Authentication For CitectSCADA Web Client. Applies To: CitectSCADA 6.xx and 7.xx VijeoCitect 6.xx and 7.
Enabling Integrated Windows Authentication For CitectSCADA Web Client Applies To: CitectSCADA 6.xx and 7.xx VijeoCitect 6.xx and 7.xx Summary: What is the difference between Basic Authentication and Windows
More informationConfiguring Single Sign-On from the VMware Identity Manager Service to Office 365
Configuring Single Sign-On from the VMware Identity Manager Service to Office 365 VMware Identity Manager JULY 2015 V1 Table of Contents Overview... 2 Passive and Active Authentication Profiles... 2 Adding
More informationForumbee Single Sign- On
Forumbee Single Sign- On What is Single Sign- On? In basic terms, Single Sign- On (SSO) allows users of your web site to log into your Forumbee community automatically, without needing to sign up and create
More informationCopyright: WhosOnLocation Limited
How SSO Works in WhosOnLocation About Single Sign-on By default, your administrators and users are authenticated and logged in using WhosOnLocation s user authentication. You can however bypass this and
More informationFlexible Identity Federation
Flexible Identity Federation Quick start guide version 1.0.1 Publication history Date Description Revision 2015.09.23 initial release 1.0.0 2015.12.11 minor updates 1.0.1 Copyright Orange Business Services
More informationEgnyte Single Sign-On (SSO) Installation for Okta
w w w. e g n y t e. c o m Egnyte Single Sign-On (SSO) Installation for Okta To set up Egnyte so employees can log in using SSO, follow the steps below to configure Okta and Egnyte to work with each other.
More informationOpenLogin: PTA, SAML, and OAuth/OpenID
OpenLogin: PTA, SAML, and OAuth/OpenID Ernie Turner Chris Fellows RightNow Technologies, Inc. Why should you care about these features? Why should you care about these features? Because users hate creating
More informationCentrify Mobile Authentication Services
Centrify Mobile Authentication Services SDK Quick Start Guide 7 November 2013 Centrify Corporation Legal notice This document and the software described in this document are furnished under and are subject
More informationForumbee Single Sign- On
Forumbee Single Sign- On What is Single Sign- On? In basic terms, Single Sign- On (SSO) allows users of your web site to log into your Forumbee community automatically, without needing to sign up and create
More informationFax User Guide 07/31/2014 USER GUIDE
Fax User Guide 07/31/2014 USER GUIDE Contents: Access Fusion Fax Service 3 Search Tab 3 View Tab 5 To E-mail From View Page 5 Send Tab 7 Recipient Info Section 7 Attachments Section 7 Preview Fax Section
More informationCSCI110 Exercise 4: Database - MySQL
CSCI110 Exercise 4: Database - MySQL The exercise This exercise is to be completed in the laboratory and your completed work is to be shown to the laboratory tutor. The work should be done in week-8 but
More informationCloudwork Dashboard User Manual
STUDENTNET Cloudwork Dashboard User Manual Make the Cloud Yours! Studentnet Technical Support 10/28/2015 User manual for the Cloudwork Dashboard introduced in January 2015 and updated in October 2015 with
More informationIntegrating Autotask Service Desk Ticketing with the Cisco OnPlus Portal
Integrating Autotask Service Desk Ticketing with the Cisco OnPlus Portal This Application Note provides instructions for configuring Apps settings on the Cisco OnPlus Portal and Autotask application settings
More informationContent Management System User Guide
Content Management System User Guide support@ 07 3102 3155 Logging in: Navigate to your website. Find Login or Admin on your site and enter your details. If there is no Login or Admin area visible select
More informationConfigure Single Sign on Between Domino and WPS
Configure Single Sign on Between Domino and WPS What we are doing here? Ok now we have the WPS server configured and running with Domino as the LDAP directory. Now we are going to configure Single Sign
More informationCentrify Mobile Authentication Services for Samsung KNOX
Centrify Mobile Authentication Services for Samsung KNOX SDK Quick Start Guide 3 October 2013 Centrify Corporation Legal notice This document and the software described in this document are furnished under
More informationOverview. How It Works
Overview Email is a great way to communicate with your alumni and donors. It s agile, it can be interactive, and it has lower overhead than print mail. Our constituents are also becoming more and more
More informationUser Guide. Version R91. English
AuthAnvil User Guide Version R91 English August 25, 2015 Agreement The purchase and use of all Software and Services is subject to the Agreement as defined in Kaseya s Click-Accept EULATOS as updated from
More informationOkta/Dropbox Active Directory Integration Guide
Okta/Dropbox Active Directory Integration Guide Okta Inc. 301 Brannan Street, 3rd Floor San Francisco CA, 94107 info@okta.com 1-888- 722-7871 1 Table of Contents 1 Okta Directory Integration Edition for
More informationMcAfee Cloud Identity Manager
Salesforce Cloud Connector Guide McAfee Cloud Identity Manager version 1.1 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted,
More informationGoogle Apps Deployment Guide
CENTRIFY DEPLOYMENT GUIDE Google Apps Deployment Guide Abstract Centrify provides mobile device management and single sign-on services that you can trust and count on as a critical component of your corporate
More informationPOINT OF SALES SYSTEM (POSS) USER MANUAL
Page 1 of 24 POINT OF SALES SYSTEM (POSS) USER MANUAL System Name : POSI-RAD System Release Version No. : V4.0 Total pages including this covering : 23 Page 2 of 24 Table of Contents 1 INTRODUCTION...
More informationRemote Access End User Reference Guide for SHC Portal Access
Remote Access End User Reference Guide for SHC Portal Access Version 2.0 6/7/2012 This remote access end user reference guide provides an overview of how to install Citrix receiver, which is a required
More informationSINGLE SIGN-ON SETUP T ECHNICAL NOTE
T ECHNICAL NOTE Product: Create!archive 6.2.1 Last modified: October 5, 2007 12:03 pm Created by: Development SINGLE SIGN-ON SETUP This Technical Note contains the following sections: Summary Create!archive
More informationFairsail. Implementer. Single Sign-On with Fairsail and Microsoft Active Directory Federation Services 2.0. Version 1.92 FS-SSO-XXX-IG-201406--R001.
Fairsail Implementer Microsoft Active Directory Federation Services 2.0 Version 1.92 FS-SSO-XXX-IG-201406--R001.92 Fairsail 2014. All rights reserved. This document contains information proprietary to
More informationSalesforce1 Mobile Security Guide
Salesforce1 Mobile Security Guide Version 1, 1 @salesforcedocs Last updated: December 8, 2015 Copyright 2000 2015 salesforce.com, inc. All rights reserved. Salesforce is a registered trademark of salesforce.com,
More informationHP Business Service Management
HP Business Service Management Software Version: 9.25 BPM Monitoring Solutions - Best Practices Document Release Date: January 2015 Software Release Date: January 2015 Legal Notices Warranty The only warranties
More informationqliqdirect Active Directory Guide
qliqdirect Active Directory Guide qliqdirect is a Windows Service with Active Directory Interface. qliqdirect resides in your network/server and communicates with qliqsoft cloud servers securely. qliqdirect
More informationGetting Started (direct link to Lighthouse Community http://tinyurl.com/q5dg5wp)
Getting Started (direct link to Lighthouse Community http://tinyurl.com/q5dg5wp) If you re already a member, click to login and see members only content. Use the same login ID that you use to register
More informationMCBDirect Corporate Logging on using a Soft Token
MCBDirect Corporate Logging on using a Soft Token Document issue: 2.1 Date of issue: September 2014 Contents About Soft Token authentication... 3 Logging onto MCBDirect Corporate online banking... 4 Soft
More informationAVG Business SSO Connecting to Active Directory
AVG Business SSO Connecting to Active Directory Contents AVG Business SSO Connecting to Active Directory... 1 Selecting an identity repository and using Active Directory... 3 Installing Business SSO cloud
More informationBroner Issue Tracking System User Guide
Broner Issue Tracking System User Guide Preliminary Pages Address Copyright 2015, Broner Metals Solutions Ltd. All rights reserved Broner product names which are mentioned in this document and the Broner
More informationVirtual Communities Operations Manual
Virtual Communities Operations Manual The Chapter Virtual Communities (VC) have been developed to improve communication among chapter leaders and members, to facilitate networking and communication among
More informationIntegration Overview. Web Services and Single Sign On
Integration Overview Web Services and Single Sign On Table of Contents Overview...3 Quick Start 1-2-3...4 Single Sign-On...6 Background... 6 Setup... 6 Programming SSO... 7 Web Services API...8 What is
More informationSingle Sign-On Portal User Reference (Okta Cloud SSO)
Single Sign-On Portal User Reference (Okta Cloud SSO) Contents Okta Single Sign-on Portal... 3 Initial account creation and configuration... 3 First time manual login to the Okta Single Sign-on Portal...
More informationSingle Sign-On Guide for Blackbaud NetCommunity and The Patron Edge Online
Single Sign-On Guide for Blackbaud NetCommunity and The Patron Edge Online 062212 2012 Blackbaud, Inc. This publication, or any part thereof, may not be reproduced or transmitted in any form or by any
More informationNODE4 SERVICE DESK SYSTEM
NODE4 SERVICE DESK SYSTEM KNOWLEDGE BASE ARTICLE INTERNAL USE ONLY NODE4 LIMITED 24/04/2015 ADD A POP, IMAP OR OFFICE 365 ACCOUNT TO OUTLOOK USING CUSTOM SETTINGS If you re setting up Outlook for the first
More informationAdministrator Guide. v 11
Administrator Guide JustSSO is a Single Sign On (SSO) solution specially developed to integrate Google Apps suite to your Directory Service. Product developed by Just Digital v 11 Index Overview... 3 Main
More informationConfiguring Sponsor Authentication
CHAPTER 4 Sponsors are the people who use Cisco NAC Guest Server to create guest accounts. Sponsor authentication authenticates sponsor users to the Sponsor interface of the Guest Server. There are five
More informationSJC Password Self-Service System FAQ 2012
The San Jacinto College Password Self-Service System enables students to reset their password quickly and conveniently online. By utilizing this service, you can change your password and gain access to
More informationHubcase for Salesforce Installation and Configuration Guide
Hubcase for Salesforce Installation and Configuration Guide Note: This document is intended for system administrator, and not for end users. Installation and configuration require understanding of both
More informationAccess Control and Audit Trail Software
Varian, Inc. 2700 Mitchell Drive Walnut Creek, CA 94598-1675/USA Access Control and Audit Trail Software Operation Manual Varian, Inc. 2002 03-914941-00:3 Table of Contents Introduction... 1 Access Control
More informationeduc Office 365 email: Remove & create new Outlook profile
Published: 29/01/2015 If you have previously used Outlook the with the SCC/SWO service then once you have been moved into Office 365 your Outlook will need to contact the SCC/SWO servers one last time
More informationOffice 365 deploym. ployment checklists. Chapter 27
Chapter 27 Office 365 deploym ployment checklists This document provides some checklists to help you make sure that you install and configure your Office 365 deployment correctly and with a minimum of
More informationHELP DESK MANUAL INSTALLATION GUIDE
Help Desk 6.5 Manual Installation Guide HELP DESK MANUAL INSTALLATION GUIDE Version 6.5 MS SQL (SQL Server), My SQL, and MS Access Help Desk 6.5 Page 1 Valid as of: 1/15/2008 Help Desk 6.5 Manual Installation
More informationUser Management Tool 1.5
User Management Tool 1.5 2014-12-08 23:32:23 UTC 2014 Citrix Systems, Inc. All rights reserved. Terms of Use Trademarks Privacy Statement Contents User Management Tool 1.5... 3 ShareFile User Management
More informationNeoMail Guide. Neotel (Pty) Ltd
NeoMail Guide Neotel (Pty) Ltd NeoMail Connect Guide... 1 1. POP and IMAP Client access... 3 2. Outlook Web Access... 4 3. Outlook (IMAP and POP)... 6 4. Outlook 2007... 16 5. Outlook Express... 24 1.
More informationAccess and Login. Single Sign On Reference. Signoff
Access and Login To access single sign on, here are the steps: Step 1: type in the URL: postone.onelogin.com Step 2: Enter your Post student email in the username field Step 3: Enter your Post student
More informationAWS Directory Service. Simple AD Administration Guide Version 1.0
AWS Directory Service Simple AD Administration Guide AWS Directory Service: Simple AD Administration Guide Copyright 2015 Amazon Web Services, Inc. and/or its affiliates. All rights reserved. Amazon's
More informationHow To Set Up Chime For A Coworker On Windows 7.1.2 (Windows) With A Windows 7 (Windows 7) On A Windows 8.1 (Windows 8) With An Ipad (Windows).Net (Windows Xp
INSTALLATION GUIDE July 2015 Copyright and Disclaimer This document, as well as the software described in it, is furnished under license of the Instant Technologies Software Evaluation Agreement and may
More informationOET Cloud Services Getting Started Guide
OET Cloud Services Getting Started Guide Introduction OET Cloud Services uses Google Drive to let you store and access OET files anywhere -- on the web, and access them on your PC, or on any device connected
More informationOneLogin Integration User Guide
OneLogin Integration User Guide Table of Contents OneLogin Account Setup... 2 Create Account with OneLogin... 2 Setup Application with OneLogin... 2 Setup Required in OneLogin: SSO and AD Connector...
More informationQualtrics Single Sign-On Specification
Qualtrics Single Sign-On Specification Version: 2010-06-25 Contents Introduction... 2 Implementation Considerations... 2 Qualtrics has never been used by the organization... 2 Qualtrics has been used by
More informationHow Board Members and State Employees Utilize the Security Portal to Access PDMP. July 30, 2014 Version 2 Software Release Version 3.4.
How Board Members and State Employees Utilize the Security Portal to Access PDMP July 30, 2014 Version 2 Software Release Version 3.4.11 Table of Contents How to Access PDMP via the ADPH Security Portal...
More informationConnect 9.2 Notes + Documentation August 2010 1
Connect 9.2 Notes + Documentation August 2010 1 Introduction Connect 9.2 offers a number of great tools to reduce the time necessary to manage a large community of users, including improved methods to
More informationFileMaker Server 14. Custom Web Publishing Guide
FileMaker Server 14 Custom Web Publishing Guide 2004 2015 FileMaker, Inc. All Rights Reserved. FileMaker, Inc. 5201 Patrick Henry Drive Santa Clara, California 95054 FileMaker and FileMaker Go are trademarks
More informationUse Enterprise SSO as the Credential Server for Protected Sites
Webthority HOW TO Use Enterprise SSO as the Credential Server for Protected Sites This document describes how to integrate Webthority with Enterprise SSO version 8.0.2 or 8.0.3. Webthority can be configured
More informationIntroduction and overview view of Citrix ShareFile provisioning. Preparing your Citrix ShareFile account for provisioning
Chapter 119samanage Configuring g user provisioning for Citrix ShareFile This section includes the following topics: "Introduction and overview of Citrix ShareFile provisioning" on page 119-37 "Preparing
More informationNT Authentication Configuration Guide
NT Authentication Configuration Guide Version 11 Last Updated: March 2014 Overview of Ad Hoc Security Models Every Ad Hoc instance relies on a security model to determine the authentication process for
More informationCreate your portal account, and connect to your medical records.
Create your portal account, and connect to your medical records. Follow these steps if you have not received an email invitation to register. Any questions, please email us at patientportal@raleighmedicalgroup.com
More information