SAML Configuration

The Security Assertion Mark-up Language (SAML) is a set of open standards and protocols for sharing security information about identity, authentication and authorization across different systems, and it is designed specifically for web applications.

This section enables you to setup single sign on to MDO application. Below are the set of information required to setup single sign on:

 

 

  • Login to MDO with login credentials
  • Click on setting icon located on top right section.
  • Click on Advanced
  • Click SAML Configuration
  • Click “Add New Configuration”.
  • Click on “Browse” to upload the XML file provided by the client application.
  • Provide application description in “IDP Alias Name” column. IDPA Alias Name is used to uniquely identifies all applications interacting with the same AD server.
  • Provide “Entity ID”, Entity ID is the Combination of alias name and company code and is used by AD to check which application is requesting access.
  • “Default IDP URL” value is automatically generated based on the uploaded XML file.
  • Select your IDP Server Token Signing Certificate from the dropdown in the “IDP Server Token Signing Certificate List” The list of all certificates in the uploaded XML file is gets automatically added to this list.
  • Manually provide the IDP Server Token Signing Certificate in the “IDP Server Token Signing Certificate “ section.
  • Choose security profile descriptor in the “Security Profiles”
  • Choose security profile descriptor in the “Security Profiles”
  • Choose whether the response from AD server should be encrypted in the ‘Required Signed ArtifactResolve’
  • Click on “Save” button to save the configuration.
  • Click on “Download Metadata” file to download all information related to the configuration in an XML format.
  • Click on “Generate URL” to