Idea ID: 1768377

Full SSO authentication in suite

Status : Waiting for Votes
over 2 years ago

Customer is running SMA-SM 2019.02.

They'd like to have SSO authentication like classic SM's TSO.

After logging on OS, end user can access all URL (CDF/BO/SM/Service Portal) without entering any username or password.

Tags:

  • Hi Team,

    We have the same requirement,

     

    They'd like to have SSO authentication like classic SM's TSO.

    After logging on OS, end user can access URL Service Portal - http://<hostname>/saw/ess> without entering any username or password.

    Kindly help.

    Regards,

     Shameer Saleem

  • we got similar requirement.

    we have service manager 9.62. installing smax hybid version 2020.02. Does this now officially supported. if not is there any plan to do so.

  • For Portal, it requires customer admin to configure additional specific things in their ADFS by themselves as below (we don’t have guidance from Lab):

    Enable Kerberos in ADFS:

    1. For internet, use form-based
    2. For intranet, use NTLM/Kerberos

    With this configuration, Customer can

    • If PC belongs to same domain with ADFS, User can login Portal without user/password
    • If PC doesn’t belong to ADFS domain, IDM will popup the login page to ask user/password

     

    For SM access, it depends on customer’s decision. They can continually use TSO with LWSSO enable and without any upgrade for SM. Or They can use SAML as well to connect containerized IDM, this requires them to upgrade SM RTE to SM 9.52 p5 or SM 9.62 RTE/webtier