Twinfield Single Sign On



Similar documents
Creating a User Profile for Outlook 2013

Security Assertion Markup Language (SAML) Site Manager Setup

Accessing the Media General SSL VPN

Managed Security Web Portal USER GUIDE

Kaseya 2. User Guide. Version 6.1

To configure Outlook Express for your InfoMetrics address:

About DropSend. Sending Files with DropSend

HDAccess Administrators User Manual. Help Desk Authority 9.0

Configuring IBM Cognos Controller 8 to use Single Sign- On

Knowledge Base. Setup GoogleApps in Outlook Pages. Zeumic Pty Ltd. PO Box 44 Kew, VIC Australia 3101

Initial Setup of Microsoft Outlook 2011 with IMAP for OS X Lion

PassKey Manager. Schoolwires Centricity

Set Up Instructions

User Management Tool 1.5

7. In the boxed unlabeled field, enter the last 4 digits of your Social Security number.

OneLogin Integration User Guide

Departmental User Dashboard

Setup and Administration for ISVs

User Management Tool 1.6

Tenrox. Single Sign-On (SSO) Setup Guide. January, Tenrox. All rights reserved.

How-to: Single Sign-On

PowerLink for Blackboard Vista and Campus Edition Install Guide

Update Instructions

2-FACTOR AUTHENTICATION WITH

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

Administration Guide. . All right reserved. For more information about Specops Password Sync and other Specops products, visit

Use the below instructions to configure your wireless settings to connect to the secure wireless network using Microsoft Windows Vista/7.

Create!form Folder Monitor. Technical Note April 1, 2008

Installation Guides - Information required for connection to the Goldfields Institute s (GIT) Wireless Network

1. Open the preferences screen by opening the Mail menu and selecting Preferences...

How to Use JCWHosting Reseller Cloud Storage Solution

Update Instructions

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Tableau Server

Perceptive Connector for Infor Lawson AP Invoice Automation

ADFS Integration Guidelines

Remote Access VPN SSL VPN Access via Internet Explorer

Installation Steps on Desktop Clients

Using Internet or Windows Explorer to Upload Your Site

Exchange Outlook Profile/POP/IMAP/SMTP Setup Guide

Configuring Sponsor Authentication

Enrollment Process for Android Devices

Manual. Netumo NETUMO HELP MANUAL Copyright Netumo 2014 All Rights Reserved

AccountView. Single Sign-On Guide

Law School Computing Services User Memo

DEPLOYMENT GUIDE Version 1.1. Deploying the BIG-IP LTM v10 with Citrix Presentation Server 4.5

Single Sign-On Guide for Blackbaud NetCommunity and The Patron Edge Online

Tenrox and Microsoft Dynamics CRM Integration Guide

Exchange Outlook Profile/POP/IMAP/SMTP Setup Guide

Instructions for Using Secure . (SMail) via Outlook Web Access. with an RSA Token

Table of Contents. Changing Your Password in Windows NT p. 1. Changing Your Password in Alpha Connection.. pp. 1-3

Deploying RSA ClearTrust with the FirePass controller

Update Instructions

Windows XP Exchange Client Installation Instructions

ProxySG TechBrief Enabling Transparent Authentication

Configuring Outlook 2010 Anywhere for UNSW Exchange system.

Table of Contents. Open-Xchange Authentication & Session Handling. 1.Introduction...3

Exchange Web Services [EWS] support in The Bat! v7

Frequently Asked Questions

Using Outlook Web Access (OWA) & Remote Web Workplace

Quick Start Guide. Web Conferencing & Secure Instant Messaging via Microsoft Office Communications Server Apptix Live Support:

Virtual Code Authentication User s Guide. June 25, 2015

Lenovo Partner Access - Overview

Work with PassKey Manager

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on. User Information

Customer User Guide. Self Service CUSTOMER USER GUIDE VERSION 1

Virtual Desktop and SSL VPN access with OnDemand tokencode. User Guide

Authentication and Single Sign On

Microsoft Outlook 2010

How to set up your Secure in Outlook 2010*

Connecting to the University Wireless Network

Internal Revenue Service

Mandiri e-cash Online

STEP BY STEP GUIDE TO USING LARGE BUSINESS TOKENS. Large Token (Vasco DP250) Activation on Account. Activate Token Once Obtained

Outlook Profile Setup Guide Exchange 2010 Quick Start and Detailed Instructions

MBC WiFi wireless logon: Windows 7 (laptop)

Outlook Express. Make Changes in Red: Open up Outlook Express. From the Menu Bar. Tools to Accounts - Click on Mail Tab.

How to Secure a Groove Manager Web Site

PaperClip. em4 Cloud Client. Manual Setup Guide

SignTrak STOLS User Guide x4034 SignTrak 05/06/09

Setup Corporate (Microsoft Exchange) . This tutorial will walk you through the steps of setting up your corporate account.

Using TLS Encryption with Microsoft Outlook 2007

BEST PRACTICES ARCHIVE in contentaccess version 2.5

Online Statements. About this guide. Important information

RMS Cloud - Setup Instructions for Windows Computers

Quick Reference Guide PAYMENT GATEWAY (Virtual Terminal)

NCAA Single-Source Sign-On System User Guide

Single Sign-On Implementation Guide

Background Information

Initial Setup of Mac Mail with IMAP for OS X Lion

Query JD Edwards EnterpriseOne Customer Credit using Oracle BPEL Process Manager

Virtual Private Network (VPN)

DEPLOYMENT GUIDE DEPLOYING THE BIG-IP LTM SYSTEM WITH CITRIX PRESENTATION SERVER 3.0 AND 4.5

Creating a generic user-password application profile

ProgressBook CentralAdmin User Guide

How To Integrate Watchguard Xtm With Secur Access With Watchguard And Safepower 2Factor Authentication On A Watchguard 2T (V2) On A 2Tv 2Tm (V1.2) With A 2F

NT Authentication Configuration Guide

Salesforce Opportunities Portlet Documentation v2

vcommander will use SSL and session-based authentication to secure REST web services.

Fax and SMS Quickguide

Portal Administration. Administrator Guide

Transcription:

Twinfield Single Sign On manual, version 5.4 April 2009 For general information about our webservices see the Twinfield Webservices Manual Twinfield International NV De Beek 9-15 3871 MS Hoevelaken Netherlands copyright 2005 2011 - Twinfield International N.V. Twinfield SingleSignOn Page 1/8

Table of contents Single Sign On login 3 Resources 3 Methods 4 Prepare 4 Web page 5 Resources 5 Post 5 User management 6 Twinfield SingleSignOn Page 2/8

Single Sign On login Twinfield Single Sign-On is a method of automated access control that enables a user to let a third party server safely authenticate through a web service to gain access to a restricted web page without the user having to fill in its user name, password and organization credentials. 1. The third party server must make a call to the Twinfield Web Service, to request the preparation of an authentication token. 2. The Twinfield Web Service will return a token if authentication is successful. 3. The third party server must write HTML containing post variables to its client. 4. The client then automatically posts the variables to the Twinfield Web Page using SSL. Resources The Twinfield Single Sign On web services is related to the URL: https://login.twinfield.com resource Web Service WSDL File location /webservices/singlesignon.asmx /webservices/singlesignon.asmx?wsdl Twinfield SingleSignOn Page 3/8

Methods Prepare This function is called with a user code, password and organization code parameters to prepare an authentication token. The token out parameter is assigned by the function if the credentials are authenticated successfully and the return value is OK. Authentication can fail because the user may not use single sign-on, because the log-on credentials are invalid, because the log-on has been deleted or disabled or because the organization is inactive. Parameters parameter user password organisation token description User code. Password. Organisation code. Token string. The token is only valid once and is valid for only 30 seconds. Return value Log-on result enumeration type. log-on result description Ok NotAllowed Blocked Invalid Deleted Disabled OrganisationInactive Token prepared successful. Single sign-on is not allowed. Log-on is blocked, because of system maintenance. Log-on is invalid. Log-on is deleted. Log-on is disabled. Organization is inactive. Twinfield SingleSignOn Page 4/8

Web page The third party server should write an HTML page to the client that submits itself to the Web Page, with at least the mandatory variables. If the variables are posted correctly, a redirect will be done to the next page. The next page depends on the user settings and could for instance be the main desktop page, but could also be the SMS authentication page if extended authentication is required. If the post fails, an error message will be displayed with a link to the return-url if assigned or recoverable. Resources resource Web page location /logon/singlesignon.aspx Post Methods The sessionid must be sent as a SOAP header. Parameters parameter user organisation token returnurl company description User code (Required) Organisation code. (Required) Authentication token, requested at the Web service. (Required) URL to return to when the user logs off. Code of the company to be opened. Return value XML result string. Example The HTML code below is an example of what the client web page could look like. Of course the value attributes should be filled with the proper values. <html> <body onload="document.forms[0].submit();"> <form method="post" action="https://login.twinfield.com/logon/singlesignon.aspx"> <input type="hidden" name="user" value=""> <input type="hidden" name="organisation" value=""> <input type="hidden" name="token" value=""> <input type="hidden" name="returnurl" value=""> <input type="hidden" name="company" value=""> </form> </body> </html> Twinfield SingleSignOn Page 5/8

User management Once single sign-on has been enabled in the organisation, Twinfield will provide a number of settings and restrictions for each user to start using single sign-on. Settings First of all a Single Sign-on setting will be made visible on the Account status tab of the User manager page, which is located under the Access Manager Users menu. Clicking on the Single Sign-on drop down list gives three options: Disabled Enabled Required When Single Sign-on is Disabled, the user will not be able to log on using single sign-on. If the option is Enabled, the user will be able to log on with single sign-on, but will also still be able to log on using the regular log-on page. In case the Required option has been selected, the user can only log on with single sign-on. Twinfield SingleSignOn Page 6/8

Warnings and Restrictions If the Single Sign-on setting is Enabled or Required, the User manager page contains a number of warnings and restrictions because changing certain settings might cause single sign-on to fail. First of all the Password expiration setting is disabled. This is needed to keep the Twinfield password synchronized with the externally managed password, used during single sign-on. This means that the change password page will never be shown during the log on, even if the settings is somehow turned on. If the currently logged on user opens his user settings, the password and password confirmation fields are not displayed. The current user can only change his password through the Change password button in the Access Manager menu. However if the Single Sign-on setting is Enabled or Required, change password is disabled. Twinfield SingleSignOn Page 7/8

If someone else's user settings are edited, the password and password confirmation fields are displayed. But if the Single Sign-on setting is Enabled or Required, a warning message will be shown once the password value is changed. Twinfield SingleSignOn Page 8/8

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information