Configure federation using OpenID (ADFS 4.0) by following the steps below:
- To initialize the configuration process, open a support ticket with the ValueBlue support team and provide the following details:
- Client Identifier
- Metadata URL
- Your BlueDolphin site URL
- Domain name used to log in to your Active Directory domain, for example: myowndomain.nl or myactivedirectorydomain.local.
- Your logo in .png format (makes it easier to distinguish SSO from other types of authentication)
- Specify the method (OpenID or SAML)
- Open ADFS Settings.
- Create a new application group by clicking Add Application Group...
- In Name use "BlueDolphin".
- In Template select Web Browser accessing a web application.
- Click Next.
- A Client Identifier is generated. Temporarily store this value, because you will need it later on.
- Add the following Redirect URI (these URLs are subject to change):
- Select Access Control Policy and configure as desired.
- Click Next, Next, Next and then Close.
- Open the created Application Group.
- Select the BlueDolphin Web Application and choose Edit.
- Open the tab Issuance Transform Rules.
- Add Rule.
- In Claim Rule Template select Send LDAP attributes as claims and click Next.
- In Claim Rule Name use "BlueDolphin Claims".
- In Attribute store select Active Directory.
- Configure the following claims:
- Click Finish.
- Open the tab Client Permissions.
- Select the following scopes:
- Click OK and OK again.
- Determine your federation metadata URL. This should be something like:
https://adfs.yourdomain.toplevel/adfs/.well-known/openid-configuration
Comments
0 comments
Please sign in to leave a comment.