Absorb Single Sign-On (SSO) V3.0



Similar documents
Central Desktop Enterprise Edition (Security Pack)

Qualtrics Single Sign-On Specification

Authorize.net modules for oscommerce Online Merchant.

Single Sign-On in PHP & HATS Applications using Hashed Cookies

OpenLogin: PTA, SAML, and OAuth/OpenID

This manual will illustrate how to integrate your WordPress Blog or website with the Docebo Learning Management System.

Egnyte Single Sign-On (SSO) Installation for OneLogin

Using Authorize.net for Credit Card Processing in YogaReg

How To Use Saml 2.0 Single Sign On With Qualysguard

Version 1.0. ASAM CS Single Sign-On

Saba Cloud. Overview of SSO for mobile applications

Single Sign-On Guide for Blackbaud NetCommunity and The Patron Edge Online

Building Secure Applications. James Tedrick

TRIPwire HSIN Federation:

DIGIPASS as a Service. Google Apps Integration

WhippleHill has created an integration with Wikispaces to enable schools

Copyright: WhosOnLocation Limited

Version 3.2 Release Note. V3.2 Release Note

OneLogin Integration User Guide

AccountView. Single Sign-On Guide

Using SAML for Single Sign-On in the SOA Software Platform

INTEGRATE SALESFORCE.COM SINGLE SIGN-ON WITH THIRD-PARTY SINGLE SIGN-ON USING SENTRY A GUIDE TO SUCCESSFUL USE CASE

LiteCommerce Authorize.Net Module. Version 2.4

To set up Egnyte so employees can log in using SSO, follow the steps below to configure VMware Horizon and Egnyte to work with each other.

Egnyte Single Sign-On (SSO) Configuration for Active Directory Federation Services (ADFS)

Administrator Guide. v 11

Encrypting*a*Windows*7*Hard*Disk* with%bitlocker%disk%encryption!

Configuring ADFS 3.0 to Communicate with WhosOnLocation SAML

Cloud Elements ecommerce Hub Provisioning Guide API Version 2.0 BETA

SCADA Security. Enabling Integrated Windows Authentication For CitectSCADA Web Client. Applies To: CitectSCADA 6.xx and 7.xx VijeoCitect 6.xx and 7.

Remote Authentication and Single Sign-on Support in Tk20

Step-by-Step guide for SSO from MS Sharepoint 2010 to SAP EP 7.0x

HP Asset Manager. Implementing Single Sign On for Asset Manager Web 5.x. Legal Notices Introduction Using AM

PingFederate. Salesforce Connector. Quick Connection Guide. Version 4.1

RFG Secure FTP. Web Interface

Configuring and Monitoring Citrix Access Gateway-Linux Servers. eg Enterprise v5.6

CA Nimsoft Service Desk

Configuring and Monitoring Citrix Branch Repeater

Integrations. Help Documentation

Logging In You must log in to the system before you can begin exchanging files with UMB. To log in to the system, follow the steps below.

Portal User Guide. Customers. Version 1.1. May of 5

Knowledge Base. Setup GoogleApps in Outlook Pages. Zeumic Pty Ltd. PO Box 44 Kew, VIC Australia 3101

Authentication and Single Sign On

The increasing popularity of mobile devices is rapidly changing how and where we

ADFS for. LogMeIn and join.me authentication

Forumbee Single Sign- On

Connect 9.2 Notes + Documentation August

DualShield SAML & SSO. Integration Guide. Copyright 2011 Deepnet Security Limited. Copyright 2011, Deepnet Security. All Rights Reserved.

Copyright Pivotal Software Inc, of 10

Only LDAP-synchronized users can access SAML SSO-enabled web applications. Local end users and applications users cannot access them.

Single Sign-On Implementation Guide

SAML Authentication within Secret Server

Tenrox. Single Sign-On (SSO) Setup Guide. January, Tenrox. All rights reserved.

Paynow 3rd Party Shopping Cart or Link Integration Guide

Computer Services Documentation

For details about using automatic user provisioning with Salesforce, see Configuring user provisioning for Salesforce.

KMx Enterprise: Integration Overview for Member Account Synchronization and Single Signon

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

Configuring Salesforce

PingFederate. Windows Live Cloud Identity Connector. User Guide. Version 1.0

Working with Indicee Elements

Single Sign On Requirements

Getting Started with StoreGrid Cloud

Welcome (slide 1) Welcome to the Florida Department of Education Single Sign-On tutorial for federated user login and navigation.

Safewhere*Identify 3.4. Release Notes

Dynamic DNS How-To Guide

SAML single sign-on configuration overview

Configuring and Monitoring Bluecoat AntiVirus

Use Enterprise SSO as the Credential Server for Protected Sites

This chapter describes how to use the Junos Pulse Secure Access Service in a SAML single sign-on deployment. It includes the following sections:

Egnyte Single Sign-On (SSO) Installation for Okta

Forumbee Single Sign- On

Customizing the SSOSessionTimeout.jsp page for Kofax Front Office Server 3.5.2

Phone Manager Application Support OCTOBER 2014 DOCUMENT RELEASE 4.1 SAGE CRM

State of Hawaii Department of Education. Self-Service Password Manager User Guide.

Configuring Single Sign-On from the VMware Identity Manager Service to Office 365

NT Authentication Configuration Guide

IBM Tivoli Federated Identity Manager V6.2.2 Implementation. Version: Demo. Page <<1/10>>

Credomatic Integration Resources. Browser Redirect API Documentation June 2007

SSO Plugin. Case study: Integrating with Ping Federate. J System Solutions. Version 4.0

Copyright 2014 Jaspersoft Corporation. All rights reserved. Printed in the U.S.A. Jaspersoft, the Jaspersoft

Stoneware Inc. Hyland Software OnBase. Stoneware, Inc.

NeoMail Guide. Neotel (Pty) Ltd

MONETA.Assistant API Reference

Oracle Single Sign-On

Get Success in Passing Your Certification Exam at first attempt!

PaperCut Payment Gateway Module CommWeb Quick Start Guide

SSO Plugin. HP Service Request Catalog. J System Solutions. Version 3.6

Welcome to Business Internet Banking

e. House Tax / Urban Development Tax (Paid) Receipt.

PowerLink for Blackboard Vista and Campus Edition Install Guide

Using Foundstone CookieDigger to Analyze Web Session Management

HarePoint Workflow Extensions for Office 365. Quick Start Guide

User Management Tool 1.6

Authentication Methods

Table of contents. Jasig CAS support for the Spring Security plugin.

USING FEDERATED AUTHENTICATION WITH M-FILES

Come2Play Channel-SSO v0.22

Cloudwork Dashboard User Manual

Spring Security CAS Plugin - Reference Documentation. Burt Beckwith. Version M1

Transcription:

Absorb Single Sign-On (SSO) V3.0

Overview Absorb allows single sign-on (SSO) with third-party systems, regardless of the programming language. SSO is made secure by a series of calls (between Absorb and your system) using MD5 hash encryption. The authentication flow is outlined in the following diagram: Absorb SSO currently supports users only (not administrators). Requests require the use of your private API key. To obtain this, please contact support@absorbanywhere.com. The Absorb system currently supports three unique sets of interfaces: - Version 1 - Version 2 - Version 3 Depending on what version of the interface you are using please use the appropriate URL. Absorb Single Sign-On (SSO) 2

Settings The following variables and settings are required in the SSO process: 1. API Key: your organization s private API key. 2. Sign-on URL: users will be directed here for sign-on verification. You will need to provide Absorb with this URL upon set up. 3. Sign-out URL: users will be directed here upon sign-out from Absorb. You will need to provide Absorb with this URL upon set up. 4. Unique Identifier (see Appendix A). 5. Absorb URL: your organization s URL to access Absorb Version 1 Interface - http://yourname.absorbtraining.com/user/ Version 2 Interface - http://yourname.absorbtraining.com/u/get.ashx?method=sso Version 3 Interface - http://yourname.absorbtraining.com/get.ashx?method=sso Absorb Single Sign-On (SSO) 3

Sign-On 1. To access Absorb, users should be redirected from your system to your Absorb URL with the following parameters in the query string: Parameter Value Example SSOID Unique Identifier user@test.com SSOKey MD5 Hash (SSOID + API Key) 2b18bb54c4e785449a44c705cdcf8b21 Using the above examples, your request should look like this: Version 1 Interface - http://yourname.absorbtraining.com/user/?ssoid=user@test.com&ssokey= 2b18bb54c4e785449a44c705cdcf8b21 Version 2 Interface - http://yourname.absorbtraining.com/u/get.ashx?method=sso&ssoid=user@ test.com&ssokey=2b18bb54c4e785449a44c705cdcf8b21 Version 3 Interface - http://yourname.absorbtraining.com/get.ashx?method=sso&ssoid=user@te st.com&ssokey=2b18bb54c4e785449a44c705cdcf8b21 For more details see Appendix B. 2. If successful, the user will be automatically redirected back to your Sign-on URL for verification, with a parameter called SSORequest. Example: http://your-url/sso/?ssorequest= aff562e661ac07a0a1c1ddca7fb5a6ba 3. Your system should verify an Absorb session has been requested on your end and redirect back to Absorb with a parameter called SSOResponse. Parameter Value Example SSOResponse MD5 Hash (SSORequest + API Key) 13ef75140a8b3fbcd5b9213fadc795cb Using the above examples, your request should look like this: Version 1 Interface - http://yourname.absorbtraining.com/user/?ssoresponse= 13ef75140a8b3fbcd5b9213fadc795cb Absorb Single Sign-On (SSO) 4

Version 2 Interface - http://yourname.absorbtraining.com/u/get.ashx?method=sso&ssoresponse = 13ef75140a8b3fbcd5b9213fadc795cb Version 3 Interface - http://yourname.absorbtraining.com/get.ashx?method=sso&ssoresponse= 13ef75140a8b3fbcd5b9213fadc795cb 4. Finally, Absorb will verify the response and if successful, the user will be logged into their courses. If unsuccessful, the user will be provided with Absorb s standard log in screen. The SSO is only valid for a single login, if the user returns, they process will need to start over from step 1. Sign-Out 1. When a user clicks Log out in Absorb, they will be redirected to your Sign-out URL where additional sign out actions can take place on your server. Their Absorb session is immediately destroyed. Absorb Single Sign-On (SSO) 5

Appendix A: Unique Identifiers Absorb will accept a number of fields as a unique identifier, with Email being the default option. It is up to your organization to determine which field will work best with your system. Suggested fields include: E-mail Address (default) Employee Number Absorb Username Reference Number As well as any customizable fields. You will need to provide Absorb with your preference upon set up. Note: In the event that more than one result matches a query, the first available result will be returned. Absorb Single Sign-On (SSO) 6

Appendix B: MD5 Encryption The SSOKey in your request is created by appending your private API Key to the unique SSOID and then applying MD5 encryption to the complete string. MD5 functions are available in most programming languages. For more information, please see http://en.wikipedia.org/wiki/md5. SSOKey = MD5(SSOID + APIKey) Variable SSOID API Key Example user@test.com 525cc28527d9912cbed4e6c6e91aba4c Using the above examples, your SSO key should be generated as: SSOKey = MD5("user@test.com525cc28527d9912cbed4e6c6e91aba4c") SSOKey = 525cc28527d9912cbed4e6c6e91aba4c The SSOResponse is generated in a similar way by appending your private API Key to the SSORequest (from Absorb) and then applying MD5 encryption to the complete string. SSOResponse = MD5(SSORequest + APIKey) Variable Example SSORequest aff562e661ac07a0a1c1ddca7fb5a6ba API Key 525cc28527d9912cbed4e6c6e91aba4c Using the above examples, your SSO key should be generated as: SSOResponse = MD5("aff562e661ac07a0a1c1ddca7fb5a6ba"+ "525cc28527d9912cbed4e6c6e91aba4c") SSOResponse = 13ef75140a8b3fbcd5b9213fadc795cb Please note: your SSOKey and SSOResponse should contain only lowercase letters and numbers. Absorb Single Sign-On (SSO) 7

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information