Fairsail. Implementer. Single Sign-On with Fairsail and Microsoft Active Directory Federation Services 2.0. Version 1.92 FS-SSO-XXX-IG R001.
|
|
- Victor Hoover
- 8 years ago
- Views:
Transcription
1 Fairsail Implementer Microsoft Active Directory Federation Services 2.0 Version 1.92 FS-SSO-XXX-IG R001.92
2 Fairsail All rights reserved. This document contains information proprietary to Fairsail and may not be reproduced, disclosed, or used in whole or in part without the written permission of Fairsail. Software, including but not limited to the code, user interface, structure, sequence, and organization, and documentation are protected by national copyright laws and international treaty provisions. This document is subject to U.S. and other national export regulations. Fairsail takes care to ensure that the information in this document is accurate, but Fairsail does not guarantee the accuracy of the information or that use of the information will ensure correct and faultless operation of the service to which it relates. Fairsail, its agents and employees, shall not be held liable to or through any user for any loss or damage whatsoever resulting from reliance on the information contained in this document. Nothing in this document alters the legal obligations, responsibilities or relationship between you and Fairsail as set out in the contract existing between us. This document may contain screenshots captured from a standard Fairsail system populated with fictional characters and using licensed personal images. Any resemblance to real people is coincidental and unintended. All trademarks and service marks mentioned in this document belong to their corresponding owners. FS-SSO-XXX-IG R Microsoft Active Directory Federation Services 2.0 Fairsail
3 Contents Contents Background 4 Prerequisites 5 Overview 6 Procedure 7 Installation 8 Configuration 9 Fairsail Configuration 9 AD FS 2.0 Configuration 15 SP-Initiated Login 17 Testing 18 Logging in to Fairsail Using Single Sign-On 19 Setting Up Chrome for Single Sign-On 20 Setting Up Firefox for Single Sign-On 25 Setting Up Internet Explorer for Single Sign-On 27 References and more information 31 Troubleshooting 32 Internet Information Services 33 Active Directory Federation Services 34 Service Provider Initiated Login 36 Appendix: Browser handling of SAML requests 37 Step 1 38 Step 2 40 Step 3 43 Microsoft Active Directory Federation Services 2.0 Fairsail
4 Background Authentication for multiple cloud based services is greatly simplified by using single sign-on (SSO) technologies. SSO enables users to log in at a single location and access a range of services without re-authenticating. Since its release in 2005, the Security Assertion Markup Language (SAML) version 2.0 has established itself as the dominant standard for cross-domain web single sign-on in the enterprise space, with salesforce.com introducing support in the Winter '09 release (October 2008) and Microsoft in Active Directory Federation Services (AD FS) version 2.0 in May You can now configure a seamless single sign-on from a Microsoft environment to Fairsail without a third-party federation product. Microsoft Active Directory Federation Services 2.0 Fairsail
5 Prerequisites You will need: Microsoft Windows Server 2008 R2 Enterprise or Datacenter edition, NOT Standard edition. If you are configuring this environment for an evaluation, you can download a 180 day trial version here: Microsoft Active Directory Federation Services (AD FS) 2.0. Windows Server 2008 R2 includes AD FS 1.0, which does not support SAML 2.0. If you have AD FS 1.0, download and install the AD FS 2.0 RTW (release to web) package. AD FS is a Microsoft Management Console (MMC) snap-in. Microsoft Update Rollup 3 for AD FS 2.0, available to download from Microsoft here: Update Rollup 3 includes fixes for known issues and enables multiple SSO instances to use the same token signing certificate. After installing the rollup make sure you download and execute the RelaxedRequestSigningCertsv2.sql script as documented in the Knowledge Base article. A Fairsail environment, commonly known as an org. For the purposes of evaluation you can sign up for a free Fairsail HCM or Fairsail Recruit trial here: The procedures described in this guide are effective but take time to complete, test and validate. You must allow enough time before attempting to use Fairsail with single sign-on in a full production environment. We strongly recommend scheduling the project to complete the process as far as successful login at least four weeks before go-live. This allows enough time: To resolve support issues. For adequate testing. To synchronize data with Fairsail. Microsoft Active Directory Federation Services 2.0 Fairsail
6 Overview SAML 2.0 defines several roles for parties involved in single sign-on: The user authenticates (logs in) to the identity provider (IdP) - in our case, this is AD FS 2.0. The user can then access a resource at one or more service providers (SP, and also known as relying parties) without needing to log in at each service provider. The process for an IdP-initiated login into Fairsail is simplified as: 1. The user authenticates to the AD FS server using Integrated Windows Authentication (Kerberos tokens over HTTP) and requests login to Fairsail 2. AD FS returns a SAML assertion to the user s browser 3. The browser automatically submits the assertion to Fairsail, which logs the user in. For SP-initiated login, go to SP-Initiated Login (see page 17). Microsoft Active Directory Federation Services 2.0 Fairsail
7 Procedure This icon is used to indicate points in the procedure where additional information is available in Troubleshooting (see page 32), starting on page. Each icon is hyperlinked; use it to jump to the relevant point in Troubleshooting (see page 32). Microsoft Active Directory Federation Services 2.0 Fairsail
8 Procedure Installation Installation 1. Install Windows Server 2008 R2 Enterprise or Datacenter edition, NOT Standard edition. If you are re-installing Windows Server R2, make sure that the environment is clean. Traces of previous AD FS installations, such as an existing adfs directory or configuration database will stop successful re-installation. If you are running an Active Directory forest with domain controllers running on earlier functional levels, to ensure compatibility leave the Windows Server 2008-based domain controller at its default level. The 2008 domain controller then runs at the lowest functional level that is possible in your environment. After the domain functional level is raised, domain controllers running earlier operating systems cannot operate in the domain. 2. Create a friendly DNS name for AD FS and point it to your adfs server. In this article, we'll use adfs.fairsaildev.com. Typically, this is the CNAME for your adfs server. If you want to use a different name, attach another IP address to the server and create a DNS A record to map the hostname to this IP address to avoid server authentication errors. 3. Download and install the AD FS 2.0 server role. This automatically installs other pre-requisite Windows components including IIS. 4. In the IIS manager create an SSL certificate for your friendly DNS name. Give the certificate a bit length of Do not create the certificate as self-signed. 5. On the client machine, install: o The SSL certificate o The Certificate Authority s root certificate 6. Run through the AD FS Server configuration wizard: a. Create a new Federation Service b. Select Stand-alone Federation Server c. Select the certificate that you created for your friendly DNS name 7. Add the friendly DNS name for the AD FS server to the client machine as a local intranet website through Control Panel > Internet Options > Security. Use the form Microsoft Active Directory Federation Services 2.0 Fairsail
9 Procedure Configuration Configuration To build a federation between two parties you must establish a trust relationship by exchanging metadata. Manually enter the metadata for the AD FS 2.0 instance into the Fairsail configuration. Fairsail metadata is downloaded as an XML file which AD FS 2.0 can consume. Fairsail Configuration You must configure: The domain (see page 9). SAML 2.0 setup (see page 10). You can also configure your login page to select an authentication service as an identity provider (see page 14). Configure My Domain The Fairsail My Domain ( feature enables you to select a custom domain name for your application. A My Domain URL looks like for a production org, or for a Developer Edition. You cannot configure My Domain for a Fairsail trial org; to test, you must use a live production org or a Force.com development org. A benefit of configuring My Domain is that it enables support for SP-initiated single sign-on, improving the user experience, and allowing users to access 'deep links' into their environment via SSO. Configure My Domain in Setup > Company Profile > My Domain. You will need to complete the process of configuring, testing and deploying My Domain ( for SP-initiated SSO to work correctly. Microsoft Active Directory Federation Services 2.0 Fairsail
10 Procedure Configuration Configure SAML In the AD FS 2.0 MMC snap-in, select the certificates node and double click the token-signing certificate to view it: 2. Click the Details tab 3. Click Copy to File 4. Save the certificate in DER format. 5. On the AD FS server find and record your Federation Metadata URL: a. Open the AD FS MMC b. Select Service > Endpoints > Metadata > Type:Federation Metadata: 6. Open the Federation Metadata file: In a browser address bar enter <Server URL><Federation Metadata URL> Microsoft Active Directory Federation Services 2.0 Fairsail
11 Procedure Configuration 7. In the Federation Metadata file find the EntityDescriptor ID line and record the attribute labeled entityid: 8. In Fairsail, go to Setup > Administration Setup > Security Controls > Single Sign-On Settings 9. Click Edit Fairsail displays the Single Sign-On Settings page. 10. Check SAML Enabled:. 11. Click Save. Fairsail displays the Single Sign-On Settings page with the SAML Single Sign-On Settings related list. 12. Click New: Microsoft Active Directory Federation Services 2.0 Fairsail
12 Procedure Configuration Fairsail displays the SAML Single Sign-On Setting Edit page: 13. Complete the fields as follows: Name API Name SAML Version A name for this service. For example Fairsail SSO Automatically created by Fairsail based on Name Not editable. User Provisioning Enabled Not checked. Issuer Entity ID Enter the attribute labeled entityid displayed in your Federation Metadata. Issuer is case sensitive. EntityID forms the first part of the URL of your Fairsail org, up to and including the cloudforce.com. After configuring MyDomain, login to Fairsail and capture your EntityID from the address bar. Confusingly, this is not the attribute labeled entityid displayed in your Federation Metadata. Microsoft Active Directory Federation Services 2.0 Fairsail
13 Procedure Configuration Identity Provider Certificate Signing Certificate Assertion Decryption Certificate SAML Identity Type SAML Identity Location Identity Provider Login URL Identity Provider Logout URL Custom Error URL Browse and select the token-signing certificate you exported earlier Default Certificate. Assertion not encrypted. Assertion contains the Federation ID from the User object. Identity is in the NameIdentifier element of the Subject statement The URL of your AD FS SAML endpoint, to which Fairsail sends SAML requests for SP-initiated login. You can find the URL in the AD FS MMC at Endpoints > Token Issuance > Type:SAML 2.0/WS-Federation. In the example: Note that the Identity Provider Login URL field is case sensitive. Enter a URL to which the user will be sent after they log out. For example: Leave blank. 14. Click Save to save the settings and download the metadata xml file. Microsoft Active Directory Federation Services 2.0 Fairsail
14 Procedure Configuration Configure Login Page When you have configured My Domain and SAML 2.0 you can configure your login page to select an authentication service as an identity provider. 1. Go to Setup > Domain Management > My Domain. 2. Under Login Page Branding, click Edit Fairsail displays the Login Page Branding page. This page lists the authentication services available to you for selection: 3. Under Authentication Service select the name of the service you have just configured. 4. Make any other changes you want to the branding. 5. Click Save. Microsoft Active Directory Federation Services 2.0 Fairsail
15 Procedure Configuration AD FS 2.0 Configuration 1. Open the AD FS 2.0 MMC snap in and Add a Trusted Relying Party: a. Select Data Source: Import data about a relying party from a file. Browse to the XML you downloaded from Fairsail b. Display Name: Give the trust a display name, for example Fairsail Test c. Select Issuance Authorization Rules: Permit all users to access this relying party d. Click Next to accept the defaults e. Open Edit Claim Rules Dialog: Checked 2. In the claim rules editor click the Issuance Transform Rules tab 3. Add a new rule: Claim Rule Template Send LDAP Attributes as Claims. Microsoft Active Directory Federation Services 2.0 Fairsail
16 Procedure Configuration Claim Rule Name LDAP Attribute Outgoing Claim Type For testing use the User Principal Name (UPN) as NameID. Enter: Send UPN as NameID. In production, use an attribute with a value that is unlikely to change over time such as the user s address or employee ID. Any change in the value will break SSO for that user. For testing use the User Principal Name (UPN) as NameID. Enter: Send UPN as NameID. In production, use an attribute with a value that is unlikely to change over time such as the user s address or employee ID. Any change in the value will break SSO for that user. If you change Claim Rule Name here you must pass through the new value by specifying it in the AD FS MMC at: Trust Relationships > Claims Provider Trusts > Acceptance Transform Rules User Principal Name Name ID 4. Click Finish. Microsoft Active Directory Federation Services 2.0 Fairsail
17 SP-Initiated Login IdP-initiated login typically works by setting up a link on the company intranet that users click to get access to Fairsail. SP-initiated login happens when a user clicks a direct link to Fairsail. If you configured a My Domain entity ID in the Force.com SAML settings, for example, users can go to URLs in that domain and be automatically redirected to AD FS for authentication. For SP-initiated login to work, you must set AD FS Secure Hash Algorithm parameter to SHA-1, because Fairsail uses the SHA-1 algorithm when signing SAML requests, and AD FS defaults to SHA-256: Go to AD FS trust properties for the Fairsail relying party under Advanced: Microsoft Active Directory Federation Services 2.0 Fairsail
18 Testing To test your configuration, set the Federation ID of a Fairsail user to the UPN of your own AD account and attempt to login: For SP-initiated login, assuming you configured a 'My Domain' entity ID (see page 9), you can just go straight to it, for example For IdP-initiated login, you must use the AD FS login URL and specify the logintorp parameter as the Fairsail SAML entity ID, for example: In either case, the browser should follow a chain of redirects, ultimately logging you in to Fairsail. If you get a Fairsail login error use the SAML assertion validator tool on the Fairsail single sign-on configuration page. It displays the results of the last failed SAML login. If you get an error from AD FS, check the AD FS logs in Server Manager\Diagnostics\Applications and Services Logs\AD FS 2.0\Admin. If you configured a My Domain entity ID, SP-initiated login will work for deep-links. Bookmark a link from deep inside Fairsail then log out. Reload your browser and select the bookmark. You should be seamlessly redirected to your IdP, authenticated, and then redirected back to the bookmarked link. Microsoft Active Directory Federation Services 2.0 Fairsail
19 Logging in to Fairsail Using Single Sign-On When Fairsail has been implemented using single sign-on technology, use the web address for your Fairsail site and your company provided single sign-on credentials to get access to the Fairsail system. Add the Fairsail start page to your browser Favorites or Bookmarks to get there quickly and easily. To avoid having to log in separately to Fairsail every time, you can set up your browser to take full advantage of single sign-on. Instructions differ depending on the browser you are using. Microsoft Active Directory Federation Services 2.0 Fairsail
20 Logging in to Fairsail Using Single Sign-On Setting Up Chrome for Single Sign-On Setting Up Chrome for Single Sign-On 1. Open Google Chrome. 2. Click Customize and select Settings from the drop down: Chrome displays the Settings tab. 3. At the bottom of the window, click Show advanced settings : 4. In the Network section, click Change proxy settings Chrome displays the Internet Properties dialog. Microsoft Active Directory Federation Services 2.0 Fairsail
21 Logging in to Fairsail Using Single Sign-On Setting Up Chrome for Single Sign-On 5. Click the Security tab and click Local intranet: 6. Click Sites: Chrome displays the Local intranet dialog: Microsoft Active Directory Federation Services 2.0 Fairsail
22 7. Click Advanced. Chrome displays the Local intranet Advanced dialog. Logging in to Fairsail Using Single Sign-On Setting Up Chrome for Single Sign-On 8. Enter the server url in the Add field using the form and click Add: Chrome adds the sites to the list of Websites in the dialog: 9. Click Close to close the Local intranet Advanced dialog. 10. Click OK to close the Local intranet dialog and return to the Internet Options dialog. 11. In the Internet Options dialog click Trusted sites and click Sites: Chrome displays the Trusted sites dialog. Microsoft Active Directory Federation Services 2.0 Fairsail
23 Logging in to Fairsail Using Single Sign-On Setting Up Chrome for Single Sign-On 12. Enter in the Add field and click Add: Chrome adds the site to the list of Websites in the dialog: 13. Click Close to close the Trusted sites dialog and return to the Internet Options dialog. Microsoft Active Directory Federation Services 2.0 Fairsail
24 14. In the Internet Options dialog with Trusted sites still selected, click Custom level : Logging in to Fairsail Using Single Sign-On Setting Up Chrome for Single Sign-On Chrome displays the Security Settings Trusted Sites Zone dialog. 15. Scroll through the list of Settings and click the radio button Automatic logon with current user name and password: 16. Click OK to close the Security Settings Trusted Sites Zone dialog. 17. Click OK to close the Internet Options dialog. You can now log in to SSO using the link: Microsoft Active Directory Federation Services 2.0 Fairsail
25 Logging in to Fairsail Using Single Sign-On Setting Up Firefox for Single Sign-On Setting Up Firefox for Single Sign-On 1. Open Firefox. 2. In the Address bar enter: about:config and press Enter. Firefox displays a warning message: 3. Click I ll be careful, I promise! Firefox displays the list of configuration preferences for your browser. 4. In the Search box enter: network.negotiate to focus the list of preference names. 5. Double click on the preference name: network.negotiate-auth.trusted-uris Firefox opens an Enter string value dialog. 6. In the Enter string value dialog enter: 7. Click OK Firefox adds the address as a value: Microsoft Active Directory Federation Services 2.0 Fairsail
26 8. Close the about:config browser window. Logging in to Fairsail Using Single Sign-On Setting Up Firefox for Single Sign-On You can now log in to SSO using the link: The first time you log in to SSO after setting up your browser Firefox may display a warning message: If this occurs: 1. Click I Understand the Risks. 2. Click Add Exception Firefox displays a confirmation dialog: 3. Check Permanently store this exception. 4. Click Confirm Security Exception. Microsoft Active Directory Federation Services 2.0 Fairsail
27 Logging in to Fairsail Using Single Sign-On Setting Up Internet Explorer for Single Sign-On Setting Up Internet Explorer for Single Sign-On 1. Open Internet Explorer. 2. Go to Tools and select Internet Options: Internet Explorer displays the Internet Options dialog. 3. Click the Security tab and click Local intranet: Microsoft Active Directory Federation Services 2.0 Fairsail
28 Logging in to Fairsail Using Single Sign-On Setting Up Internet Explorer for Single Sign-On 4. Click Sites: Internet Explorer displays the Local intranet dialog: 5. Click Advanced. Internet Explorer displays the Local intranet Advanced dialog. 6. Enter the server url in the Add field using the form and click Add: Microsoft Active Directory Federation Services 2.0 Fairsail
29 Internet Explorer adds the sites to the list of Websites in the dialog: Logging in to Fairsail Using Single Sign-On Setting Up Internet Explorer for Single Sign-On 7. Click Close to close the Local intranet Advanced dialog. 8. Click OK to close the Local intranet dialog and return to the Internet Options dialog. 9. In the Internet Options dialog click Trusted sites and click Sites: Internet Explorer displays the Trusted sites dialog. 10. Enter in the Add field and click Add: Internet Explorer adds the site to the list of Websites in the dialog: Microsoft Active Directory Federation Services 2.0 Fairsail
30 Logging in to Fairsail Using Single Sign-On Setting Up Internet Explorer for Single Sign-On 11. Click Close to close the Trusted sites dialog and return to the Internet Options dialog. 12. In the Internet Options dialog with Trusted sites still selected, click Custom level : Internet Explorer displays the Security Settings Trusted Sites Zone dialog. 13. Scroll through the list of Settings and click the radio button Automatic logon with current user name and password: 14. Click OK to close the Security Settings Trusted Sites Zone dialog. 15. Click OK to close the Internet Options dialog. You can now log in to SSO using the link: Microsoft Active Directory Federation Services 2.0 Fairsail
31 References and more information Setting Up Internet Explorer for Single Sign-On References and more information This document draws on the following source material: The developerforce wiki article: ration_services Rhys Goodwin s Weblog: For more information on: AD FS 2.0 diagnostics see the MSDN Claims-Based Identity Blog AD FS 2.0 RTW (release to web) download: Kerberos SPNs see Active Directory and Kerberos SPNs Made Easy Microsoft Windows Server 2008 R2: Microsoft Active Directory Federation Services 2.0 Fairsail
32 Troubleshooting This section provides solutions for issues that you may experience during the setup process described in this guide. This icon is used throughout this guide to indicate points where additional information is available in this section. Each icon is hyperlinked; use it to jump to the relevant point in this section. Click this icon at the end of each section to return to the main guide. Microsoft Active Directory Federation Services 2.0 Fairsail
33 Troubleshooting Internet Information Services Internet Information Services IIS001 What happens When trying to start a web site in the IIS MMC snap-in you get the error message: The process cannot access the file because it is being used by another process Why There may be a conflict with another process using port 80 or port 443, the ports IIS uses by default for TCP (port 80) and SSL (port 443). The ListenOnlyList registry subkey is not configured correctly on the computer running IIS. What to do This issue is covered in a Microsoft knowledge base article: 1. Use Netstat.exe to see if another process is using port 80 or port If there is no port conflict, examine the ListenOnlyList registry subkey and make any changes required as described here: Microsoft Active Directory Federation Services 2.0 Fairsail
34 Troubleshooting Active Directory Federation Services Active Directory Federation Services ADFS001 What happens When the installer tries to register a service principal name (SPN) you get an error message. Why Integrated Windows Authentication between the browser and the AD FS IIS instance is unable to work correctly with the automatically created SPN. What to do Manually create a Kerberos SPN for the DNS name. Use Command Prompt to enter: setspn -a HOST/adfs.fairsaildev.com testzone\ad FSSVR01 setspn -a HOST/adfs testzone\ad FSSVR01 ADFS002 What happens During AD FS configuration you get this message: Why An adfs directory already exists, probably from a previous installation. The adfs directory hosts the AD FS configuration database, which must also be deleted. What to do Exit the AD FS configuration wizard and delete the directory. This action detects the underlying database and restarts the Federation Server Configuration Wizard, which now offers you the option of deleting the configuration database: Microsoft Active Directory Federation Services 2.0 Fairsail
35 Troubleshooting Active Directory Federation Services Check Delete database and click Next to resume the Configuration Wizard. ADFS003 What happens The event log displays errors relating to Certificate Revocation List (CRL) checks failing when the AD FS server cannot connect to the internet. Why The AD FS server must connect to the internet in order to download the full signing certificate chain from the certificate provider. What to do Turn off CRL checking for AD FS by opening Powershell as Administrator and running the script: Add-PSSnapin Microsoft.Adfs.PowerShell Set-ADFSRelyingPartyTrust -TargetName "YourRelyingPartyDisplayName" -SigningCertificateRevocationCheck None Microsoft Active Directory Federation Services 2.0 Fairsail
36 Troubleshooting Service Provider Initiated Login Service Provider Initiated Login SPIL001 What happens The AD FS event log displays the message: Event ID: 378 SAML request is not signed with expected signature algorithm. SAML request is signed with signature algorithm Expected signature algorithm is ( Why The secure hash algorithm is not set to SHA-1 What to do Go to the SalesForce Sandbox Properties dialog and set the secure hash algorithm to SHA-1 Microsoft Active Directory Federation Services 2.0 Fairsail
37 Appendix: Browser handling of SAML requests SP-Initiated login has the most steps and demonstrates SAML and federation at its best. The HTTP protocol messages show you exactly what s happening at each step. You can use a tool such as iehttpheaders or Fiddler2 to capture these messages for yourself, but note that Fiddler2 interferes with Integrated Windows Authentication to IIS so you ll need to turn off extended protection on the /adfs/ls/ virtual directory if you want to try this, otherwise your browser won t authenticate with AD FS and you ll see event 4625 with error 0xc000035b in the Windows security log on the AD FS server. In the interests of clarity, some extraneous HTTP headers are omitted and long strings of base 64 encoded data and sensitive identifiers are replaced by ellipses. Microsoft Active Directory Federation Services 2.0 Fairsail
38 Appendix: Browser handling of SAML requests Step 1 Step 1 The user clicks a deep link to a Force.com page; in our example, it's The browser requests the page and Force.com renders a page containing JavaScript to redirect the browser to the Force.com SAML request generator. The SAML request generator creates a SAML request for the IdP by sending an HTML form with hidden fields back to the browser. Microsoft Active Directory Federation Services 2.0 Fairsail
39 Appendix: Browser handling of SAML requests Step 1 It then uses JavaScript to automatically submit the form to the IdP SAML endpoint. Note the text in the <noscript> element instructing the user to click the 'Continue' button to proceed. You can decode the SAMLRequest using a tool such as the SAML 2.0 Debugger: Microsoft Active Directory Federation Services 2.0 Fairsail
40 Appendix: Browser handling of SAML requests Step 2 Step 2 The browser submits the HTML form containing the SAML request to the AD FS SAML endpoint: Since we are using Integrated Windows Authentication, AD FS redirects the browser to the /auth/integrated/ directory: Finally, the user is authenticated using Integrated Windows Authentication, comprising several HTTP request/response exchanges, and AD FS serves up a SAML response. Microsoft Active Directory Federation Services 2.0 Fairsail
41 Appendix: Browser handling of SAML requests Step 2 Again, the SAML message is returned to the browser in an HTML form which is then submitted to the Force.com SAML endpoint using JavaScript. Microsoft Active Directory Federation Services 2.0 Fairsail
42 Decoding the SAML response (note the UPN in the NameID element): Appendix: Browser handling of SAML requests Step 2 Microsoft Active Directory Federation Services 2.0 Fairsail
43 Appendix: Browser handling of SAML requests Step 3 Step 3 The browser submits the HTML form which contains the SAML response to the Force.com SAML endpoint which verifies the SAML assertion, logs the user in and redirects the browser to the original requested URL. Microsoft Active Directory Federation Services 2.0 Fairsail
44 Appendix: Browser handling of SAML requests Step 3 Microsoft Active Directory Federation Services 2.0 Fairsail
HOTPin Integration Guide: Salesforce SSO with Active Directory Federated Services
1 HOTPin Integration Guide: Salesforce SSO with Active Directory Federated Services Disclaimer Disclaimer of Warranties and Limitation of Liabilities All information contained in this document is provided
More informationADFS Integration Guidelines
ADFS Integration Guidelines Version 1.6 updated March 13 th 2014 Table of contents About This Guide 3 Requirements 3 Part 1 Configure Marcombox in the ADFS Environment 4 Part 2 Add Relying Party in ADFS
More informationConfiguring ADFS 3.0 to Communicate with WhosOnLocation SAML
Configuring ADFS 3.0 to Communicate with WhosOnLocation SAML --------------------------------------------------------------------------------------------------------------------------- Contents Overview...
More informationCA Nimsoft Service Desk
CA Nimsoft Service Desk Single Sign-On Configuration Guide 6.2.6 This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to as the Documentation
More informationPingFederate. IWA Integration Kit. User Guide. Version 3.0
PingFederate IWA Integration Kit Version 3.0 User Guide 2012 Ping Identity Corporation. All rights reserved. PingFederate IWA Integration Kit User Guide Version 3.0 April, 2012 Ping Identity Corporation
More informationConfiguring Salesforce
Chapter 94 Configuring Salesforce The following is an overview of how to configure the Salesforce.com application for singlesign on: 1 Prepare Salesforce for single sign-on: This involves the following:
More informationFor details about using automatic user provisioning with Salesforce, see Configuring user provisioning for Salesforce.
Chapter 41 Configuring Salesforce The following is an overview of how to configure the Salesforce.com application for singlesign on: 1 Prepare Salesforce for single sign-on: This involves the following:
More informationSalesForce SSO with Active Directory Federated Services (ADFS) v2.0 Authenticating Users Using SecurAccess Server by SecurEnvoy
SalesForce SSO with Active Directory Federated Services (ADFS) v2.0 Authenticating Users Using SecurAccess Server by SecurEnvoy Contact information SecurEnvoy www.securenvoy.com 0845 2600010 Merlin House
More informationHow To Use Saml 2.0 Single Sign On With Qualysguard
QualysGuard SAML 2.0 Single Sign-On Technical Brief Introduction Qualys provides its customer the option to use SAML 2.0 Single Sign On (SSO) authentication with their QualysGuard subscription. When implemented,
More informationEgnyte Single Sign-On (SSO) Configuration for Active Directory Federation Services (ADFS)
w w w. e g n y t e. c o m Egnyte Single Sign-On (SSO) Configuration for Active Directory Federation Services (ADFS) To set up ADFS so that your employees can access Egnyte using their ADFS credentials,
More informationSAML 2.0 Configurations at SAP NetWeaver AS ABAP and Microsoft ADFS
SAML 2.0 Configurations at SAP NetWeaver AS ABAP and Microsoft ADFS Applies to: SAP Gateway 2.0 Summary This guide describes how you install and configure SAML 2.0 on Microsoft ADFS server and SAP NetWeaver
More informationPingFederate. Salesforce Connector. Quick Connection Guide. Version 4.1
PingFederate Salesforce Connector Version 4.1 Quick Connection Guide 2011 Ping Identity Corporation. All rights reserved. PingFederate Salesforce Quick Connection Guide Version 4.1 June, 2011 Ping Identity
More informationMicrosoft Office 365 Using SAML Integration Guide
Microsoft Office 365 Using SAML Integration Guide Revision A Copyright 2013 SafeNet, Inc. All rights reserved. All attempts have been made to make the information in this document complete and accurate.
More informationPingFederate. IWA Integration Kit. User Guide. Version 2.6
PingFederate IWA Integration Kit Version 2.6 User Guide 2012 Ping Identity Corporation. All rights reserved. PingFederate IWA Integration Kit User Guide Version 2.6 March, 2012 Ping Identity Corporation
More informationHOTPin Integration Guide: Google Apps with Active Directory Federated Services
HOTPin Integration Guide: Google Apps with Active Directory Federated Services Disclaimer Disclaimer of Warranties and Limitation of Liabilities All information contained in this document is provided 'as
More informationADFS for. LogMeIn and join.me authentication
ADFS for LogMeIn and join.me authentication ADFS for join.me authentication This step-by-step guide walks you through the process of configuring ADFS for join.me authentication. Set-up Overview 1) Prerequisite:
More informationStep-by-Step guide for SSO from MS Sharepoint 2010 to SAP EP 7.0x
Step-by-Step guide for SSO from MS Sharepoint 2010 to SAP EP 7.0x Sverview Trust between SharePoint 2010 and ADFS 2.0 Use article Federated Collaboration with Shibboleth 2.0 and SharePoint 2010 Technologies
More informationTenrox. Single Sign-On (SSO) Setup Guide. January, 2012. 2012 Tenrox. All rights reserved.
Tenrox Single Sign-On (SSO) Setup Guide January, 2012 2012 Tenrox. All rights reserved. About this Guide This guide provides a high-level technical overview of the Tenrox Single Sign-On (SSO) architecture,
More informationAn overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)
Chapter 83 WebEx This chapter includes the following sections: An overview of configuring WebEx for single sign-on Configuring WebEx for SSO Configuring WebEx in Cloud Manager For more information about
More informationHow-to: Single Sign-On
How-to: Single Sign-On Document version: 1.02 nirva systems info@nirva-systems.com nirva-systems.com How-to: Single Sign-On - page 2 This document describes how to use the Single Sign-On (SSO) features
More informationDell One Identity Cloud Access Manager 8.0.1 - How to Configure Microsoft Office 365
Dell One Identity Cloud Access Manager 8.0.1 - How to Configure Microsoft Office 365 May 2015 This guide describes how to configure Microsoft Office 365 for use with Dell One Identity Cloud Access Manager
More informationEVault Endpoint Protection 7.0 Single Sign-On Configuration
Revision: This manual has been provided for Version 7.0 (July 2014). Software Version: 7.0 2014 EVault Inc. EVault, A Seagate Company, makes no representations or warranties with respect to the contents
More informationAvePoint Meetings 3.2.2 for SharePoint On-Premises. Installation and Configuration Guide
AvePoint Meetings 3.2.2 for SharePoint On-Premises Installation and Configuration Guide Issued August 2015 Table of Contents About AvePoint Meetings for SharePoint... 4 System Requirements... 5 2 System
More informationThis chapter describes how to use the Junos Pulse Secure Access Service in a SAML single sign-on deployment. It includes the following sections:
CHAPTER 1 SAML Single Sign-On This chapter describes how to use the Junos Pulse Secure Access Service in a SAML single sign-on deployment. It includes the following sections: Junos Pulse Secure Access
More informationAn overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)
Chapter 190 WebEx This chapter includes the following sections: "An overview of configuring WebEx for single sign-on" on page 190-1600 "Configuring WebEx for SSO" on page 190-1601 "Configuring WebEx in
More informationOnly LDAP-synchronized users can access SAML SSO-enabled web applications. Local end users and applications users cannot access them.
This chapter provides information about the Security Assertion Markup Language (SAML) Single Sign-On feature, which allows administrative users to access certain Cisco Unified Communications Manager and
More informationSecurity Assertion Markup Language (SAML) Site Manager Setup
Security Assertion Markup Language (SAML) Site Manager Setup Trademark Notice Blackboard, the Blackboard logos, and the unique trade dress of Blackboard are the trademarks, service marks, trade dress and
More informationShavlik Patch for Microsoft System Center
Shavlik Patch for Microsoft System Center User s Guide For use with Microsoft System Center Configuration Manager 2012 Copyright and Trademarks Copyright Copyright 2014 Shavlik. All rights reserved. This
More informationConnected Data. Connected Data requirements for SSO
Chapter 40 Configuring Connected Data The following is an overview of the steps required to configure the Connected Data Web application for single sign-on (SSO) via SAML. Connected Data offers both IdP-initiated
More informationVMware Identity Manager Administration
VMware Identity Manager Administration VMware Identity Manager 2.4 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new
More informationHow To Enable A Websphere To Communicate With Ssl On An Ipad From Aaya One X Portal 1.1.3 On A Pc Or Macbook Or Ipad (For Acedo) On A Network With A Password Protected (
Avaya one X Portal 1.1.3 Lightweight Directory Access Protocol (LDAP) over Secure Socket Layer (SSL) Configuration This document provides configuration steps for Avaya one X Portal s 1.1.3 communication
More informationUsing SAML for Single Sign-On in the SOA Software Platform
Using SAML for Single Sign-On in the SOA Software Platform SOA Software Community Manager: Using SAML on the Platform 1 Policy Manager / Community Manager Using SAML for Single Sign-On in the SOA Software
More informationFlexible Identity Federation
Flexible Identity Federation Administration guide version 1.0.1 Publication history Date Description Revision 2015.09.24 initial release 1.0.0 2015.12.11 minor updates 1.0.1 Copyright Orange Business Services
More informationConfiguring. Moodle. Chapter 82
Chapter 82 Configuring Moodle The following is an overview of the steps required to configure the Moodle Web application for single sign-on (SSO) via SAML. Moodle offers SP-initiated SAML SSO only. 1 Prepare
More informationSAP NetWeaver AS Java
Chapter 75 Configuring SAP NetWeaver AS Java SAP NetWeaver Application Server ("AS") Java (Stack) is one of the two installation options of SAP NetWeaver AS. The other option is the ABAP Stack, which is
More informationImplementation Guide SAP NetWeaver Identity Management Identity Provider
Implementation Guide SAP NetWeaver Identity Management Identity Provider Target Audience Technology Consultants System Administrators PUBLIC Document version: 1.10 2011-07-18 Document History CAUTION Before
More informationConfiguring HP Integrated Lights-Out 3 with Microsoft Active Directory
Configuring HP Integrated Lights-Out 3 with Microsoft Active Directory HOWTO, 2 nd edition Introduction... 2 Integration using the Lights-Out Migration Utility... 2 Integration using the ilo web interface...
More informationHOTPin Integration Guide: DirectAccess
1 HOTPin Integration Guide: DirectAccess Disclaimer Disclaimer of Warranties and Limitation of Liabilities All information contained in this document is provided 'as is'; Celestix assumes no responsibility
More informationActive Directory Federation Services
Active Directory Federation Services Installation Instructions for WebEx Messenger and WebEx Centers Single Sign- On for Windows 2008 R2 WBS29 Copyright 1997-2013 Cisco and/or its affiliates. All rights
More informationMcAfee Cloud Identity Manager
SAML2 Cloud Connector Guide McAfee Cloud Identity Manager version 1.2 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed,
More informationSAML single sign-on configuration overview
Chapter 46 Configurin uring Drupal Configure the Drupal Web-SAML application profile in Cloud Manager to set up single sign-on via SAML with a Drupal-based web application. Configuration also specifies
More informationBlue Coat Security First Steps Solution for Integrating Authentication
Solution for Integrating Authentication using IWA Direct SGOS 6.5 Third Party Copyright Notices 2014 Blue Coat Systems, Inc. All rights reserved. BLUE COAT, PROXYSG, PACKETSHAPER, CACHEFLOW, INTELLIGENCECENTER,
More informationFairsail. Implementer. Fairsail to Active Directory Synchronization. Version 1.0 FS-PS-FSAD-IG-201310--R001.00
Fairsail Implementer Fairsail to Active Directory Synchronization Version 1.0 FS-PS-FSAD-IG-201310--R001.00 Fairsail 2013. All rights reserved. This document contains information proprietary to Fairsail
More informationCA NetQoS Performance Center
CA NetQoS Performance Center Install and Configure SSL for Windows Server 2008 Release 6.1 (and service packs) This Documentation, which includes embedded help systems and electronically distributed materials,
More informationMcAfee Cloud Identity Manager
Salesforce Cloud Connector Guide McAfee Cloud Identity Manager version 1.1 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted,
More informationFlexible Identity Federation
Flexible Identity Federation Quick start guide version 1.0.1 Publication history Date Description Revision 2015.09.23 initial release 1.0.0 2015.12.11 minor updates 1.0.1 Copyright Orange Business Services
More informationSharepoint server SSO
Configuring g on-premise Sharepoint server SSO Chapter 99 You can now provide single sign-on to your on-premise Sharepoint server applications. This section includes the following topics: "An overview
More informationSP-initiated SSO for Smartsheet is automatically enabled when the SAML feature is activated.
Chapter 87 Configuring Smartsheet The following is an overview of the steps required to configure the Smartsheet Web application for single sign-on (SSO) via SAML. Smartsheet offers both IdP-initiated
More information800-782-3762 www.stbernard.com. Active Directory 2008 Implementation. Version 6.410
800-782-3762 www.stbernard.com Active Directory 2008 Implementation Version 6.410 Contents 1 INTRODUCTION...2 1.1 Scope... 2 1.2 Definition of Terms... 2 2 SERVER CONFIGURATION...3 2.1 Supported Deployment
More informationWavecrest Certificate
Wavecrest InstallationGuide Wavecrest Certificate www.wavecrest.net Copyright Copyright 1996-2015, Wavecrest Computing, Inc. All rights reserved. Use of this product and this manual is subject to license.
More informationVMware Identity Manager Integration with Active Directory Federation Services 2.0
VMware Identity Manager Integration with Active Directory Federation Services 2.0 VMware Identity Manager J ULY 2015 V 2 Table of Contents Active Directory Federation Services... 2 Configuring AD FS Instance
More informationInstalling and Configuring vcloud Connector
Installing and Configuring vcloud Connector vcloud Connector 2.7.0 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new
More informationCONFIGURATION GUIDE WITH MICROSOFT ACTIVE DIRECTORY FEDERATION SERVER
UMANTIS CLOUD SSO CONFIGURATION GUIDE WITH MICROSOFT ACTIVE DIRECTORY FEDERATION SERVER THIS DOCUMENT DESCRIBES THE REQUIREMENTS TO SETUP A SINGLE SIGN ON (SSO) CONFIGURATION ON UMANTIS CLOUD BASED SOLUTIONS
More informationNSi Mobile Installation Guide. Version 6.2
NSi Mobile Installation Guide Version 6.2 Revision History Version Date 1.0 October 2, 2012 2.0 September 18, 2013 2 CONTENTS TABLE OF CONTENTS PREFACE... 5 Purpose of this Document... 5 Version Compatibility...
More informationWebSpy Vantage Ultimate 2.2 Web Module Administrators Guide
WebSpy Vantage Ultimate 2.2 Web Module Administrators Guide This document is intended to help you get started using WebSpy Vantage Ultimate and the Web Module. For more detailed information, please see
More informationSingle Sign-On Implementation Guide
Single Sign-On Implementation Guide Salesforce, Winter 16 @salesforcedocs Last updated: November 4, 2015 Copyright 2000 2015 salesforce.com, inc. All rights reserved. Salesforce is a registered trademark
More informationSetup Guide Access Manager 3.2 SP3
Setup Guide Access Manager 3.2 SP3 August 2014 www.netiq.com/documentation Legal Notice THIS DOCUMENT AND THE SOFTWARE DESCRIBED IN THIS DOCUMENT ARE FURNISHED UNDER AND ARE SUBJECT TO THE TERMS OF A LICENSE
More informationSAML Single-Sign-On (SSO)
C O L A B O R A T I V E I N N O V A T I O N M A N A G E M E N T Complete Feature Guide SAML Single-Sign-On (SSO) 1. Features This feature allows administrators to setup Single Sign-on (SSO) integration
More informationAWS Management Portal for vcenter. User Guide
AWS Management Portal for vcenter User Guide AWS Management Portal for vcenter: User Guide Copyright 2015 Amazon Web Services, Inc. and/or its affiliates. All rights reserved. Amazon's trademarks and trade
More informationSAP NetWeaver Fiori. For more information, see "Creating and enabling a trusted provider for Centrify" on page 108-10.
Chapter 108 Configuring SAP NetWeaver Fiori The following is an overview of the steps required to configure the SAP NetWeaver Fiori Web application for single sign-on (SSO) via SAML. SAP NetWeaver Fiori
More informationSafeNet Authentication Service
SafeNet Authentication Service Push OTP Integration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV. and/or its subsidiaries who shall have
More informationEnabling Kerberos SSO in IBM Cognos Express on Windows Server 2008
Enabling Kerberos SSO in IBM Cognos Express on Windows Server 2008 Nature of Document: Guideline Product(s): IBM Cognos Express Area of Interest: Infrastructure 2 Copyright and Trademarks Licensed Materials
More informationCentrify Cloud Management Suite
Centrify Cloud Management Suite Installation and Configuration Guide April 2013 Centrify Corporation Legal notice This document and the software described in this document are furnished under and are subject
More informationInstall MS SQL Server 2012 Express Edition
Install MS SQL Server 2012 Express Edition Sohodox now works with SQL Server Express Edition. Earlier versions of Sohodox created and used a MS Access based database for storing indexing data and other
More informationS/MIME on Good for Enterprise MS Online Certificate Status Protocol. Installation and Configuration Notes. Updated: October 08, 2014
S/MIME on Good for Enterprise MS Online Certificate Status Protocol Installation and Configuration Notes Updated: October 08, 2014 Installing the Online Responder service... 1 Preparing the environment...
More informationInstallation Guide. SafeNet Authentication Service
SafeNet Authentication Service Installation Guide Technical Manual Template Release 1.0, PN: 000-000000-000, Rev. A, March 2013, Copyright 2013 SafeNet, Inc. All rights reserved. 1 Document Information
More informationT his feature is add-on service available to Enterprise accounts.
SAML Single Sign-On T his feature is add-on service available to Enterprise accounts. Are you already using an Identity Provider (IdP) to manage logins and access to the various systems your users need
More informationSharp Remote Device Manager (SRDM) Server Software Setup Guide
Sharp Remote Device Manager (SRDM) Server Software Setup Guide This Guide explains how to install the software which is required in order to use Sharp Remote Device Manager (SRDM). SRDM is a web-based
More informationwww.stbernard.com Active Directory 2008 Implementation Guide Version 6.3
800 782 3762 www.stbernard.com Active Directory 2008 Implementation Guide Version 6.3 Contents 1 INTRODUCTION... 2 1.1 Scope... 2 1.2 Definition of Terms... 2 2 SERVER CONFIGURATION... 3 2.1 Supported
More informationSetting Up SSL on IIS6 for MEGA Advisor
Setting Up SSL on IIS6 for MEGA Advisor Revised: July 5, 2012 Created: February 1, 2008 Author: Melinda BODROGI CONTENTS Contents... 2 Principle... 3 Requirements... 4 Install the certification authority
More informationHow To Use Salesforce Identity Features
Identity Implementation Guide Version 35.0, Winter 16 @salesforcedocs Last updated: October 27, 2015 Copyright 2000 2015 salesforce.com, inc. All rights reserved. Salesforce is a registered trademark of
More informationIntegrating VMware Horizon Workspace and VMware Horizon View TECHNICAL WHITE PAPER
Integrating VMware Horizon Workspace and VMware Horizon View TECHNICAL WHITE PAPER Table of Contents Introduction.... 3 Requirements.... 3 Horizon Workspace Components.... 3 SAML 2.0 Standard.... 3 Authentication
More informationFairsail REST API: Guide for Developers
Fairsail REST API: Guide for Developers Version 1.02 FS-API-REST-PG-201509--R001.02 Fairsail 2015. All rights reserved. This document contains information proprietary to Fairsail and may not be reproduced,
More informationClick Studios. Passwordstate. Installation Instructions
Passwordstate Installation Instructions This document and the information controlled therein is the property of Click Studios. It must not be reproduced in whole/part, or otherwise disclosed, without prior
More informationSingle Sign-On Implementation Guide
Single Sign-On Implementation Guide Salesforce, Summer 15 @salesforcedocs Last updated: July 1, 2015 Copyright 2000 2015 salesforce.com, inc. All rights reserved. Salesforce is a registered trademark of
More informationOffice 365 deployment checklists
Chapter 128 Office 365 deployment checklists This document provides some checklists to help you make sure that you install and configure your Office 365 deployment correctly and with a minimum of issues.
More informationHow To Create An Easybelle History Database On A Microsoft Powerbook 2.5.2 (Windows)
Introduction EASYLABEL 6 has several new features for saving the history of label formats. This history can include information about when label formats were edited and printed. In order to save this history,
More informationConfiguring SuccessFactors
Chapter 117 Configuring SuccessFactors The following is an overview of the steps required to configure the SuccessFactors Enterprise Edition Web application for single sign-on (SSO) via SAML. SuccessFactors
More informationSetup Guide Access Manager Appliance 3.2 SP3
Setup Guide Access Manager Appliance 3.2 SP3 August 2014 www.netiq.com/documentation Legal Notice THIS DOCUMENT AND THE SOFTWARE DESCRIBED IN THIS DOCUMENT ARE FURNISHED UNDER AND ARE SUBJECT TO THE TERMS
More informationClick Studios. Passwordstate. Installation Instructions
Passwordstate Installation Instructions This document and the information controlled therein is the property of Click Studios. It must not be reproduced in whole/part, or otherwise disclosed, without prior
More informationCox Managed CPE Services. RADIUS Authentication for AnyConnect VPN Version 1.3 [Draft]
Cox Managed CPE Services RADIUS Authentication for AnyConnect VPN Version 1.3 [Draft] September, 2015 2015 by Cox Communications. All rights reserved. No part of this document may be reproduced or transmitted
More informationLAB 1: Installing Active Directory Federation Services
LAB 1: Installing Active Directory Federation Services Contents Lab: Installing and Configuring Active Directory Federation Services... 2 Exercise 1: installing and configuring Active Directory Federation
More informationAWS Directory Service. Simple AD Administration Guide Version 1.0
AWS Directory Service Simple AD Administration Guide AWS Directory Service: Simple AD Administration Guide Copyright 2015 Amazon Web Services, Inc. and/or its affiliates. All rights reserved. Amazon's
More informationWHITE PAPER Citrix Secure Gateway Startup Guide
WHITE PAPER Citrix Secure Gateway Startup Guide www.citrix.com Contents Introduction... 2 What you will need... 2 Preparing the environment for Secure Gateway... 2 Installing a CA using Windows Server
More informationAD FS 2.0 Step-by-Step Guide: Federation with Ping Identity PingFederate
AD FS 2.0 Step-by-Step Guide: Federation with Ping Identity PingFederate Ping Identity Corporation and Microsoft Corporation Published: November 2010 Version: 1.0 Author: Dave Martinez, Principal, Martinez
More informationINTEGRATION GUIDE. DIGIPASS Authentication for Salesforce using IDENTIKEY Federation Server
INTEGRATION GUIDE DIGIPASS Authentication for Salesforce using IDENTIKEY Federation Server Disclaimer Disclaimer of Warranties and Limitation of Liabilities All information contained in this document is
More informationHOTPin Integration Guide: Microsoft Office 365 with Active Directory Federated Services
HOTPin Integration Guide: Microsoft Office 365 with Active Directory Federated Services Disclaimer Disclaimer of Warranties and Limitation of Liabilities All information contained in this document is provided
More informationSingle Sign On for ShareFile with NetScaler. Deployment Guide
Single Sign On for ShareFile with NetScaler Deployment Guide This deployment guide focuses on defining the process for enabling Single Sign On into Citrix ShareFile with Citrix NetScaler. Table of Contents
More informationConfiguring Parature Self-Service Portal
Configuring Parature Self-Service Portal Chapter 2 The following is an overview of the steps required to configure the Parature Self-Service Portal application for single sign-on (SSO) via SAML. Parature
More informationApp Orchestration 2.0
App Orchestration 2.0 Configuring NetScaler Load Balancing and NetScaler Gateway for App Orchestration Prepared by: Christian Paez Version: 1.0 Last Updated: December 13, 2013 2013 Citrix Systems, Inc.
More informationCertificate Management for your ICE Server
Certificate Management for your ICE Server Version 2.23.301 Contact: sales@ingenius.com +1-613-591-9002 x3000 TRADEMARKS InGenius, InGenius Connector Enterprise and the InGenius logo are trademarks of
More informationSetup Guide Revision A. WDS Connector
Setup Guide Revision A WDS Connector COPYRIGHT Copyright 2013 McAfee, Inc. Do not copy without permission. TRADEMARK ATTRIBUTIONS McAfee, the McAfee logo, McAfee Active Protection, McAfee CleanBoot, McAfee
More informationHELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE
HELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE Copyright 1998-2013 Tools4ever B.V. All rights reserved. No part of the contents of this user guide may be reproduced or transmitted in any form or by any means
More informationUser Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream
User Manual Onsight Management Suite Version 5.1 Another Innovation by Librestream Doc #: 400075-06 May 2012 Information in this document is subject to change without notice. Reproduction in any manner
More informationConfiguring. SugarCRM. Chapter 121
Chapter 121 Configuring SugarCRM The following is an overview of the steps required to configure the SugarCRM Web application for single sign-on (SSO) via SAML. SugarCRM offers both IdP-initiated SAML
More informationVMware Identity Manager Connector Installation and Configuration
VMware Identity Manager Connector Installation and Configuration VMware Identity Manager This document supports the version of each product listed and supports all subsequent versions until the document
More informationOffice 365 deploym. ployment checklists. Chapter 27
Chapter 27 Office 365 deploym ployment checklists This document provides some checklists to help you make sure that you install and configure your Office 365 deployment correctly and with a minimum of
More informationDell One Identity Cloud Access Manager 8.0.1 - How to Configure for SSO to SAP NetWeaver using SAML 2.0
Dell One Identity Cloud Access Manager 8.0.1 - How to Configure for SSO to SAP NetWeaver using SAML 2.0 May 2015 About this guide Prerequisites and requirements NetWeaver configuration Legal notices About
More informationidp Connect for OutSystems applications
idp Connect for OutSystems applications THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
More informationCustomer Tips. Xerox Network Scanning HTTP/HTTPS Configuration using Microsoft IIS. for the user. Purpose. Background
Xerox Multifunction Devices Customer Tips June 5, 2007 This document applies to these Xerox products: X WC Pro 232/238/245/ 255/265/275 for the user Xerox Network Scanning HTTP/HTTPS Configuration using
More information