Integration Guide. Enterprise Identity by BlackBerry

Similar documents
BES10 Self-Service. Version: User Guide

BlackBerry Business Cloud Services. Version: Release Notes

Compatibility Matrix. BlackBerry Enterprise Server for Microsoft Exchange. Version 5.0.4

Installation and Configuration Guide

Compatibility Matrix. BES12 Cloud. December 14, 2015

Compatibility Matrix. VPN Authentication by BlackBerry. Version 1.7.1

Compatibility Matrix. BES12 Cloud. July 20, 2016

Compatibility Matrix. BlackBerry Enterprise Server Express for Microsoft Exchange. Version 5.0.4

Release Notes. BlackBerry Web Services. Version 12.1

User Guide. BES12 Self-Service

Compatibility Matrix BES12. June 30, 2016

BlackBerry Enterprise Server Express for Microsoft Exchange

Release Notes. BlackBerry Web Services Version 12.5

BlackBerry Enterprise Server Express for IBM Domino. October 7, 2014 Version: 5.0 Service Pack: 4. Compatibility Matrix

Compatibility Matrix BES12. September 16, 2015

New Security Features

Compatibility Matrix BES10. April 27, Version 10.2 and later

Quick Reference. Good for Enterprise to Good Work Transition Guide

Compatibility Matrix March 05, 2010

BlackBerry Enterprise Server for Microsoft Exchange. Compatibility Matrix January 31, 2011

BlackBerry Web Desktop Manager. Version: 5.0 Service Pack: 4. User Guide

BlackBerry Enterprise Server Express. Version: 5.0 Service Pack: 4. Update Guide

BlackBerry Enterprise Server for Microsoft Exchange. Compatibility Matrix March 25, 2013

New Security Features

BlackBerry Enterprise Server for Microsoft Office 365. Version: Release Notes

BlackBerry Professional Software For Microsoft Exchange Compatibility Matrix January 30, 2009

BlackBerry Enterprise Server Resource Kit BlackBerry Analysis, Monitoring, and Troubleshooting Tools Version: 5.0 Service Pack: 2.

BlackBerry Mobile Conferencing

BlackBerry Enterprise Server. BlackBerry Administration Service Roles and Permissions Version: 5.0 Service Pack: 4.

BlackBerry Desktop Manager Version: User Guide

BlackBerry World Storefront. Version: 4.3. User Guide

BlackBerry Mobile Voice System - BlackBerry MVS Client

Security Guide. BES12 Cloud

BBM for Android. Version: 1.0. User Guide

BlackBerry Web Desktop Manager. User Guide

Technical Note. BlackBerry Business Cloud Services

BlackBerry Enterprise Server Express for Microsoft Exchange

BlackBerry Enterprise Server Wireless Software Upgrades Version: 4.1 Service Pack: 7. Administration Guide

Maintenance Release. Notes. BlackBerry Enterprise Service 10. Version: 10.2 Maintenance Release: 5

BlackBerry Enterprise Server for Microsoft Office 365. Version: 1.0. Release Notes

WATCHDOX by BlackBerry Training Services Program Description ( WATCHDOX by BlackBerry Training Services Program Description )

BES12 Cloud Migration Program Description ( BES12 Cloud Migration Program Description )

BlackBerry 10 OS. Version:

TERMS and CONDITIONS OF USE - NextSTEPS TM

Technical Note. BlackBerry Enterprise Server for Novell GroupWise

Technical Note. BlackBerry Enterprise Server for Microsoft Exchange

Installation Guide. BlackBerry Enterprise Service 12. Version 12.0

Maintenance Release. Notes. BlackBerry Enterprise Server for Microsoft Exchange. Version: 5.0 Service Pack: 4 Maintenance Release: 2

PointCentral Subscription Agreement v.9.2

RockWare Click-Wrap Software License Agreement ( License )

Self Help Guides. Create a New User in a Domain

Service Agreement: January 2008

FAX-TO- END-USER LICENSE AGREEMENT

Administration Guide. Wireless software upgrades

AGREEMENT BETWEEN USER AND International Network of Spinal Cord Injury Nurses

SOFTWARE SUBSCRIPTION SERVICE (SaaS) AGREEMENT

AGREEMENT BETWEEN USER AND Global Clinical Research Management, Inc.

BNSync User License Agreement

Terms & Conditions Template

AGREEMENT BETWEEN USER AND Caduceon Environmental Laboratories Customer Portal

Installation and Administration Guide

The Credit Control, LLC Web Site is comprised of various Web pages operated by Credit Control, LLC.

Dell One Identity Cloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0

These TERMS AND CONDICTIONS (this Agreement ) are agreed to between InfluencersAtWork,

Installing the Shrew Soft VPN Client

Appendix. 1. Scope of application of the user evaluation license agreement

Overview and What's New Guide

THOMSON REUTERS (TAX & ACCOUNTING) INC. FOREIGN NATIONAL INFORMATION SYSTEM TERMS OF USE

How To Use Blackberry Cloud Services On A Blackberry Device

Self Help Guides. Setup Exchange with Outlook

Rhea Help Desk Software End User License Agreement

IF YOU DO NOT AGREE TO THESE TERMS AND CONDITIONS OF USE, PLEASE DO NOT REGISTER OR USE THE SITE.

BLACKBERRY AUTHORIZED ONLINE RETAILER BLACKBERRY HANDHELD REPAIR SERVICE TERMS AND CONDITIONS

Installing the IPSecuritas IPSec Client

ORACLE CRM ON DEMAND DEVELOPMENT ADDENDUM TO THE ORACLE PARTNERNETWORK AGREEMENT

Web Site Development Agreement

UK Vendor Website - Terms of Use Agreement

LANDESK Service Desk. Supported Platforms and Feature Compatibility

Technical Help Desk Terms of Service

Statement of Work. for. Online Event Registration Product Deployment for Salesforce Implementation. for. Open Web Application Security Project (OWASP)

Covered California. Terms and Conditions of Use

Open Source Used In Cisco Instant Connect for ios Devices 4.9(1)

CENTURY 21 CANADA LIMITED PARTNERSHIP WEBSITE TERMS OF USE

1. GRANT OF LICENSE. Formdocs LLC grants you the following rights provided that you comply with all terms and conditions of this EULA:

Feature and Technical

END USER LICENSE AGREEMENT ( EULA )

Copy Tool For Dynamics CRM 2013

Job Status Guide 3.0

TERMS & CONDITIONS. Introduction

REPAIR SERVICES AND PROCESSING FEES.

E-Sign Disclosure & E-Statements Terms and Conditions

Partners in Care Welch Allyn Connex Software Development Kit License Agreement

System Requirements. Installation. Microsoft SQL Express 2008 R2 Installation

ZIMPERIUM, INC. END USER LICENSE TERMS

C. System Requirements. Apple Software is supported only on Apple-branded hardware that meets specified system requirements as indicated by Apple.

Transcription:

Integration Guide Enterprise Identity by BlackBerry

Published: 2015-10-13 SWD-20151013141946897

Contents About Enterprise Identity... 4 Configure a new SAML connection in the SaaS client...5 Create a SaaS service in Enterprise Identity...6 Create a certificate and key pair...7 Concur service configuration... 8 Box service configuration...9 Dropbox service configuration... 10 Evernote service configuration... 11 Salesforce service configuration... 12 WatchDox service configuration...13 WebEx service configuration... 14 Workday service configuration... 15 Yammer service configuration...16 Zscaler service configuration... 17 Zendesk service configuration... 18 Legal notice...19

About Enterprise Identity About Enterprise Identity 1 Enterprise Identity by BlackBerry uses the BlackBerry Identity service in the BlackBerry Infrastructure to provide organizations with managed authentication and authorization services. You can use Enterprise Identity to provide employees and other users with a BlackBerry ID and control which cloud-based applications users have access to with that BlackBerry ID. You can also control the strength of the login information that users must provide for each service. Users can use their BlackBerry ID to gain single sign-on access to the cloud-based applications you choose, including: BlackBerry services, such as BBM Meetings and BBM Protected SaaS applications, such as Box, Salesforce, Workday, and many others If you connect a SaaS application, you must configure the SaaS application to accept the connection. After you configure the SaaS application, you can create the service in the Enterprise Identity administrator console. 4

Configure a new SAML connection in the SaaS client Configure a new SAML connection in the SaaS client 2 1. Log in to the SaaS service client application as an administrator. 2. Locate the SAML setup page. Some services include a search function that can make this easy. 3. Click the button to add an additional SAML identity provider. 4. Most services require the use of a common subset of the SAML fields. Complete the fields with the information required. 5. Click the command to save the configuration page. 5

Create a SaaS service in Enterprise Identity Create a SaaS service in Enterprise Identity 3 1. Log in to the Enterprise Identity administrator console. 2. In the left pane, click Services. 3. In the Service drop-down list, select the name of the SaaS service. Click Create. 4. Complete the fields to match your SaaS service tenant. Assertion Consumer Service URL Enter the SaaS provider name. The tenant description is optional. Enter the URL you use to access the SaaS service. Enter the tenant URL. 5. Click Save. 6. Click Enable. 7. Click the service you created. 8. Click Download to save the metadata document from the Enterprise Identity administrator console. 6

Create a certificate and key pair Create a certificate and key pair 4 The certificate and key pairs are required for each service to function. They expire periodically and must be recreated. Your organization may have its own process for creating certificates and keys. For example, you might contract with one of the companies that sells certificates. This task describes how to create a self-signed certificate, which may not be appropriate for all organizations and is not typically the most secure. Management of the keys is important to maintain security. 1. Download OpenSSL. For Windows, use the Win32 OpenSSL light installer. 2. In a command prompt window, type C:\OpenSSL-Win32\bin. 3. Replace the service with your service name and run the following commands: 1. set OPENSSL_CONF=c:\OpenSSL-Win32\bin\openssl.cfg openssl genrsa -out envservicekey.pem openssl req -new -x509 -key servicekey.pem -out servicer.pem -days 730 Country (2 letter code) [AU]:CA State or Province (full name) [Some-State]:Ontario Locality (eg, city) []:Waterloo Organization (eg, company) [Internet Widgits Pty Ltd]:BlackBerry Organizational Unit (eg, section) []:BlackBerry Identity Common (e.g. server FQDN or YOUR name) []:Service Email Address []: 4. Store the key file in a safe place (for example, a keystore). The key should be encrypted and password protected. The certificate is included in the service metadata and can be shared. 7

Concur service configuration Concur service configuration 5 Signing Certificate Signing Key Concur Concur environment concur.com 8

Box service configuration Box service configuration 6 Signing Certificate Signing Key Box Box environment box.net 9

Dropbox service configuration Dropbox service configuration 7 Signing Certificate Signing Key Dropbox Dropbox environment Dropbox 10

Evernote service configuration Evernote service configuration 8 Assertion consumer Service (single signon) URL Signing Options Signing Certificate Signing Key Evernote Evernote environment https://evernote.com/saml2 https://evernote.com/samlconsumer.action Assertions and entire response 11

Salesforce service configuration Salesforce service configuration 9 Assertion Consumer Service URL Signing Certificate Signing Key Salesforce Salesforce environment Retrieve from Salesforce metadata Retrieve from Salesforce metadata 12

WatchDox service configuration WatchDox service configuration 10 SP-initiated Login URL Issuer Signing Certificate Signing Key WatchDox WatchDox environment com.watchdox.saml Retrieve from WatchDox metadata Retrieve from WatchDox metadata 13

WebEx service configuration WebEx service configuration 11 Assertion Consumer Service URL Signing Certificate Signing Key WebEx Cisco WebEx environment Retrieve from WebEx metadata Retrieve from WebEx metadata 14

Workday service configuration Workday service configuration 12 Assertion Consumer Service URL Signing Certificate Signing Key Workday Workday environment Retrieve from Workday metadata Retrieve from Workday metadata 15

Yammer service configuration Yammer service configuration 13 Assertion Service Consumer POST URL Yammer Yammer environment Retrieve from Yammer metadata Retrieve from Yammer metadata 16

Zscaler service configuration Zscaler service configuration 14 Assertion Service Consumer POST URL SP-initiated Login URL Signing Certificate Signing Key Zscaler Zscaler environment Retrieve from Zscaler metadata Retrieve from Zscaler metadata http://www.blackberry.com 17

Zendesk service configuration Zendesk service configuration 15 Assertion Consumer Service (Single Sign On) URL Signing Certificate Signing Key Zendesk Zendesk environment Retrieve from Zendesk metadata Retrieve from Zendesk metadata 18

Legal notice Legal notice 16 2015 BlackBerry. Trademarks, including but not limited to BLACKBERRY, EMBLEM Design, BBM, BES, MANYME, VIRTUAL SIM PLATFORM, WORKLIFE, MOVIRTU, SECUSMART, SECUSMART & Design, SECUSUITE, WATCHDOX, WATCHDOX & Design and WATCHDOX & EMBLEM Design are the trademarks or registered trademarks of BlackBerry Limited, its subsidiaries and/or affiliates, used under license, the exclusive rights to which are expressly reserved. Android and Google Chrome are trademarks of Google Inc. Box is including without limitation, either a trademark, service mark or registered trademark of Box, Inc. Concur is a trademark of Concur Technologies, Inc. Dropbox is a trademark of Dropbox, Inc. Evernote is a trademark of Evernote Corporation. is a trademark of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries. ios is used under license by Apple Inc. Linux is a trademark of Linus Torvalds. Mac OS and Safari are trademarks of Apple Inc. Microsoft, Active Directory and Internet Explorer are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. Mozilla and Firefox are trademarks of Mozilla Foundation. OpenSSL is a trademark of the The OpenSSL Software Foundation, Inc. Oracle VM VirtualBox is a trademark of Oracle and/or its affiliates. Salesforce is a trademark of salesforce.com, inc. Ubuntu is a trademark of Canonical Limited. Workday is a trademark of Workday, Inc. Zendeskis a trademark of Zendesk, Inc. All other trademarks are the property of their respective owners. This documentation including all documentation incorporated by reference herein such as documentation provided or made available on the BlackBerry website provided or made accessible "AS IS" and "AS AVAILABLE" and without condition, endorsement, guarantee, representation, or warranty of any kind by BlackBerry Limited and its affiliated companies ("BlackBerry") and BlackBerry assumes no responsibility for any typographical, technical, or other inaccuracies, errors, or omissions in this documentation. In order to protect BlackBerry proprietary and confidential information and/or trade secrets, this documentation may describe some aspects of BlackBerry technology in generalized terms. BlackBerry reserves the right to periodically change information that is contained in this documentation; however, BlackBerry makes no commitment to provide any such changes, updates, enhancements, or other additions to this documentation to you in a timely manner or at all. This documentation might contain references to third-party sources of information, hardware or software, products or services including components and content such as content protected by copyright and/or third-party websites (collectively the "Third Party Products and Services"). BlackBerry does not control, and is not responsible for, any Third Party Products and Services including, without limitation the content, accuracy, copyright compliance, compatibility, performance, trustworthiness, legality, decency, links, or any other aspect of Third Party Products and Services. The inclusion of a reference to Third Party Products and Services in this documentation does not imply endorsement by BlackBerry of the Third Party Products and Services or the third party in any way. EXCEPT TO THE EXTENT SPECIFICALLY PROHIBITED BY APPLICABLE LAW IN YOUR JURISDICTION, ALL CONDITIONS, ENDORSEMENTS, GUARANTEES, REPRESENTATIONS, OR WARRANTIES OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION, ANY CONDITIONS, ENDORSEMENTS, GUARANTEES, REPRESENTATIONS OR WARRANTIES OF DURABILITY, FITNESS FOR A PARTICULAR PURPOSE OR USE, MERCHANTABILITY, MERCHANTABLE QUALITY, NON- INFRINGEMENT, SATISFACTORY QUALITY, OR TITLE, OR ARISING FROM A STATUTE OR CUSTOM OR A COURSE OF DEALING OR USAGE OF TRADE, OR RELATED TO THE DOCUMENTATION OR ITS USE, OR PERFORMANCE OR NON-PERFORMANCE OF ANY SOFTWARE, HARDWARE, SERVICE, OR ANY THIRD PARTY PRODUCTS AND SERVICES REFERENCED HEREIN, ARE HEREBY EXCLUDED. YOU MAY ALSO HAVE OTHER RIGHTS THAT VARY BY STATE OR PROVINCE. SOME JURISDICTIONS MAY NOT ALLOW THE EXCLUSION OR LIMITATION OF IMPLIED WARRANTIES AND CONDITIONS. TO THE EXTENT PERMITTED BY 19

Legal notice LAW, ANY IMPLIED WARRANTIES OR CONDITIONS RELATING TO THE DOCUMENTATION TO THE EXTENT THEY CANNOT BE EXCLUDED AS SET OUT ABOVE, BUT CAN BE LIMITED, ARE HEREBY LIMITED TO NINETY (90) DAYS FROM THE DATE YOU FIRST ACQUIRED THE DOCUMENTATION OR THE ITEM THAT IS THE SUBJECT OF THE CLAIM. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW IN YOUR JURISDICTION, IN NO EVENT SHALL BLACKBERRY BE LIABLE FOR ANY TYPE OF DAMAGES RELATED TO THIS DOCUMENTATION OR ITS USE, OR PERFORMANCE OR NON- PERFORMANCE OF ANY SOFTWARE, HARDWARE, SERVICE, OR ANY THIRD PARTY PRODUCTS AND SERVICES REFERENCED HEREIN INCLUDING WITHOUT LIMITATION ANY OF THE FOLLOWING DAMAGES: DIRECT, CONSEQUENTIAL, EXEMPLARY, INCIDENTAL, INDIRECT, SPECIAL, PUNITIVE, OR AGGRAVATED DAMAGES, DAMAGES FOR LOSS OF PROFITS OR REVENUES, FAILURE TO REALIZE ANY EXPECTED SAVINGS, BUSINESS INTERRUPTION, LOSS OF BUSINESS INFORMATION, LOSS OF BUSINESS OPPORTUNITY, OR CORRUPTION OR LOSS OF DATA, FAILURES TO TRANSMIT OR RECEIVE ANY DATA, PROBLEMS ASSOCIATED WITH ANY APPLICATIONS USED IN CONJUNCTION WITH BLACKBERRY PRODUCTS OR SERVICES, DOWNTIME COSTS, LOSS OF THE USE OF BLACKBERRY PRODUCTS OR SERVICES OR ANY PORTION THEREOF OR OF ANY AIRTIME SERVICES, COST OF SUBSTITUTE GOODS, COSTS OF COVER, FACILITIES OR SERVICES, COST OF CAPITAL, OR OTHER SIMILAR PECUNIARY LOSSES, WHETHER OR NOT SUCH DAMAGES WERE FORESEEN OR UNFORESEEN, AND EVEN IF BLACKBERRY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW IN YOUR JURISDICTION, BLACKBERRY SHALL HAVE NO OTHER OBLIGATION, DUTY, OR LIABILITY WHATSOEVER IN CONTRACT, TORT, OR OTHERWISE TO YOU INCLUDING ANY LIABILITY FOR NEGLIGENCE OR STRICT LIABILITY. THE LIMITATIONS, EXCLUSIONS, AND DISCLAIMERS HEREIN SHALL APPLY: (A) IRRESPECTIVE OF THE NATURE OF THE CAUSE OF ACTION, DEMAND, OR ACTION BY YOU INCLUDING BUT NOT LIMITED TO BREACH OF CONTRACT, NEGLIGENCE, TORT, STRICT LIABILITY OR ANY OTHER LEGAL THEORY AND SHALL SURVIVE A FUNDAMENTAL BREACH OR BREACHES OR THE FAILURE OF THE ESSENTIAL PURPOSE OF THIS AGREEMENT OR OF ANY REMEDY CONTAINED HEREIN; AND (B) TO BLACKBERRY AND ITS AFFILIATED COMPANIES, THEIR SUCCESSORS, ASSIGNS, AGENTS, SUPPLIERS (INCLUDING AIRTIME SERVICE PROVIDERS), AUTHORIZED BLACKBERRY DISTRIBUTORS (ALSO INCLUDING AIRTIME SERVICE PROVIDERS) AND THEIR RESPECTIVE DIRECTORS, EMPLOYEES, AND INDEPENDENT CONTRACTORS. IN ADDITION TO THE LIMITATIONS AND EXCLUSIONS SET OUT ABOVE, IN NO EVENT SHALL ANY DIRECTOR, EMPLOYEE, AGENT, DISTRIBUTOR, SUPPLIER, INDEPENDENT CONTRACTOR OF BLACKBERRY OR ANY AFFILIATES OF BLACKBERRY HAVE ANY LIABILITY ARISING FROM OR RELATED TO THE DOCUMENTATION. Prior to subscribing for, installing, or using any Third Party Products and Services, it is your responsibility to ensure that your airtime service provider has agreed to support all of their features. Some airtime service providers might not offer Internet browsing functionality with a subscription to the BlackBerry Internet Service. Check with your service provider for availability, roaming arrangements, service plans and features. Installation or use of Third Party Products and Services with BlackBerry's products and services may require one or more patent, trademark, copyright, or other licenses in order to avoid infringement or violation of third party rights. You are solely responsible for determining whether to use Third Party Products and Services and if any third party licenses are required to do so. If required you are responsible for acquiring them. You should not install or use Third Party Products and Services until all necessary licenses have been acquired. Any Third Party Products and Services that are provided with BlackBerry's products and services are provided as a convenience to you and are provided "AS IS" with no express or implied conditions, endorsements, guarantees, representations, or warranties of any kind by BlackBerry and BlackBerry assumes no liability whatsoever, in relation thereto. Your use of Third Party Products and Services shall be governed by and subject to you agreeing to the terms of separate licenses and other agreements applicable thereto with third parties, except to the extent expressly covered by a license or other agreement with BlackBerry. 20

Legal notice The terms of use of any BlackBerry product or service are set out in a separate license or other agreement with BlackBerry applicable thereto. NOTHING IN THIS DOCUMENTATION IS INTENDED TO SUPERSEDE ANY EXPRESS WRITTEN AGREEMENTS OR WARRANTIES PROVIDED BY BLACKBERRY FOR PORTIONS OF ANY BLACKBERRY PRODUCT OR SERVICE OTHER THAN THIS DOCUMENTATION. BlackBerry Enterprise Software incorporates certain third-party software. The license and copyright information associated with this software is available at http://worldwide.blackberry.com/legal/thirdpartysoftware.jsp. BlackBerry Limited 2200 University Avenue East Waterloo, Ontario Canada N2K 0A7 BlackBerry UK Limited 200 Bath Road Slough, Berkshire SL1 3XE United Kingdom Published in Canada 21

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information