> AquaLogic Interaction Administrator Guide > Managing Portal Users and Groups > About Importing and Authenticating Users with Authentication Sources > Importing Users for Single Sign-On (SSO)

AquaLogic Interaction Administrator Guide

     Previous Next  Open TOC in new window   View as PDF - New Window  Get Adobe Reader - New Window
Content starts here

Importing Users for Single Sign-On (SSO)

You can import users with an authentication source and have them authenticated transparently through single sign-on (SSO).

Before you create an SSO authentication source, you must:
  • Install the authentication provider on the computer that hosts the portal or on another computer.
  • Create a remote server that points to the computer that hosts the authentication provider.
  • Create an authentication web service on which to base the authentication source.
  • Create and configure the default profiles you want to apply to imported users.
  • Create the folders in which you want to store the imported users.
To create an SSO authentication source you must have the following rights and privileges:
  • Access Administration activity right
  • Create Authentication Sources activity right
  • At least Edit access to the parent folder (the folder that will store the authentication source)
  • At least Select access to the authentication web service on which this authentication source will be based
  1. Click Administration.
  2. Open the folder in which you want to store the authentication source.
  3. In the Create Object drop-down list, click Authentication Source - Remote. The Choose Web Service dialog box opens.
  4. Select the web service that provides the basic settings for your authentication source and click OK. The Remote Authentication Source Editor opens.
  5. On the Main Settings page, complete the following tasks:
    1. Setting an Authentication Source Category to Distinguish Users and Groups Imported from a Particular Domain
    2. Setting Default Profiles and Target Folders for Imported Users
    3. Setting a Target Folder for Imported Groups
  6. Click the Synchronization page and complete the following tasks:
    1. Under General Info, select Synchronization with Authentication Partner.
    2. In the Authentication Partners drop-down list, select SSO Authentication Source.
    3. Specifying Which Users and Groups to Synchronize
  7. Click the Fully Synchronized Groups page and complete the following task:
  8. Click the Set Job page and complete the following task:
  9. Click the Properties and Names page and complete the following tasks:

Run the job you associated with this authentication source.

If you are importing only partial users or groups or are applying different default profiles to each group of users, after the associated job runs once, return to the Authentication Source Editor and perform any necessary additional tasks.

If you have not already done so, you must modify the portal configuration to enable SSO.
Parent topic: About Importing and Authenticating Users with Authentication Sources

  Back to Top      Previous Next