SlideShare ist ein Scribd-Unternehmen logo

Open Doors In The Cloud By Using SSO Methodologies Between Your Organisation And IBM

•
•
LetsConnect
LetsConnect

This session is about setting up Federated login between IBM Connections Cloud and your on-premises environment so that your users seamlessly get logged in their Collaborative environment. In this session we go through the different steps needed to get a working solution and we discuss about the technologies used to accomplish the goal.

Business
1 von 36
Downloaden Sie, um offline zu lesen
Social Connections 11 Chicago, June 1-2 2017 Open Doors In The Cloud By Using SSO Methodologies Between Your Organisation And IBM Kris De Bisschop, @debisschopk
PLATINUM SPONSORS GOLD SPONSORS SILVER SPONSORS
Social Connections 11 Chicago, June 1-2 2017 A little about me • CEO @ • Administrator ICS Portfolio o IBM Notes/Domino o IBM Sametime o IBM Notes Traveler o IBM Connections o TDI • Social Business speaker • IBM Champion Collaboration Solutions • Love high-level issues • Badminton
Social Connections 11 Chicago, June 1-2 2017 Single sign-on (SSO) • Session and user authentication service • Allows the use of one set of login credentials • No more login prompts when switching applications
Social Connections 11 Chicago, June 1-2 2017 SAML • Security Assertion Markup Language • Established as a Web SSO standard in early 2008 • XML-based • Built from WebServices Security token concepts • SAMLResponse is sent as a POST body, contains an Assertion with user details, most important one is NameId, ex InternetAddress
Social Connections 11 Chicago, June 1-2 2017 SAML • Identity Provider (IdP) • LDAP • Active Directory Federation Service (ADFS) • Tivoli Federated Identity Manager • … • Service Provider (SP) • Domino • … • Client • Browser • IBM Notes Client
Social Connections 11 Chicago, June 1-2 2017 SAML • User tries to access SP application • As user is not authenticated the first time, SP redirects to IdP • User authenticates to IdP • IdP redirects user to SP by sending SAMLResponse over HTTP POST inside hidden form. SP processes SAMLResponse and redirects user to the application User Application Service Provider (SP) / client Identity Provider (IdP) 1 2 4 3 1 2 3 4
Social Connections 11 Chicago, June 1-2 2017 Use Case On-Premise Cloud IdP SP SP
Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • Standard • Federated • UserChoice (aka Modified) • AdminChoice (aka Partial)
Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • Standard • Default type • Users must log in with email address and password
Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • Federated • Users don’t have username/password on Connections Cloud • Applies to all users • The IdP must be available from the internet or VPN • Services that don’t support SAML or application passwords, don’t work • POP • IMAP
Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • UserChoice • Users have the choice to use Organization login or Connections Cloud credentials • Applies to all users • You do not need to expose IdP to internet
Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • AdminChoice • Admin specifies login type, default type is Standard • Login type can be based on • Type of users: office users vs mobile users • Application-based: POP/IMAP or not
Social Connections 11 Chicago, June 1-2 2017 SSO IBM Connections Cloud • IBM Connections Cloud products rely on SAML • Your organization is the IdP • Connections Cloud is the SP • Three flow models exist • IdP-initiated • SP-initiated • SP-initiated model for mobile apps and plug-ins
Social Connections 11 Chicago, June 1-2 2017 SSO IBM Connections Cloud • Idp-initiated • User accesses local resource with authentication • Webmail • Intranet • … • User clicks a link that redirects to Connections Cloud • SSO process is initiated, SAML assertion is sent to Connections • If validated, user accesses Connections
Social Connections 11 Chicago, June 1-2 2017 SSO IBM Connections Cloud • SP-initiated • User navigates to authentication page Connections Cloud • User clicks “Use My Organization’s Login” and enters credentials • Connections Cloud redirects to IdP • SSO process is initiated, SAML assertion is sent to Connections • If validated, user accesses Connections
Social Connections 11 Chicago, June 1-2 2017 SSO IBM Connections Cloud • SP-initiated for mobile apps and plug-ins • App requests to Connections Cloud for login endpoint • Connections Cloud looks up email address and responds with URL of authentication mechanism • App performs basic or simple form authentication • SSO process is initiated, SAML assertion is sent to Connections • If validated, user accesses Connections
Social Connections 11 Chicago, June 1-2 2017 Plug-Ins and Mobile Apps • Plug-Ins • Connections Desktop Plug-In for Windows • Connections Desktop Plug-In for Mac • Connections Plug-In for MS Outlook • Mobile Apps • Connections mobile • Chat • Meetings • Notes Traveler
Social Connections 11 Chicago, June 1-2 2017 Application passwords • A way to bypass regular log in process • Can be used by Plug-Ins and Mobile apps • Generated using a strong random number generator • Application password can be revoked • Activated by the administrator • When a user generates an application password, it is displayed only one time
Social Connections 11 Chicago, June 1-2 2017 Prepare for federated identity management • Choose the SAML version to use, typically SAMLv2 • Choose the federation type • Federated • UserChoice • AdminChoice • Review the flow models • IdP-initiated • SP-initiated • SP-initiated model for mobile apps and plug-ins • Implement SAML in your environment • Can be done between Domino and ADFS • Make sure to use the email address as NameID • Prepare for Plug-Ins and mobile devices • Test your SAML set up internally • Configure SAML with IBM Connections Cloud
Social Connections 11 Chicago, June 1-2 2017 Enable federated identity management • Send an email to support@collabserv.com • Request to have federated identity management enabled • Don’t forget your Connections Customer ID • You will need to send the FederationMetadata • https://<MY-ADFS-SERVER.yourdomain.com/FederationMetadata/2007-06/FederationMetadata.xml • Set up a Relying party trust in ADFS when you receive the info back from support
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Navigate to "Relying Party Trusts" and click on "Add Relying Party Trust"
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Select to import a file and refer to the received xml
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Specify a display name, like IBM Cloud
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Click on add rule
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Add a second rule based on the template Transform an Incoming Claim Transform an Incoming Claim
Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • For the Incoming claim type, select E-mail Address. • For the Outgoing claim type, select Name ID. • For the Outgoing name ID format, select Email. • Select Pass through all claim values. • On your AD FS server, open a PowerShell command window and issue the following command: Set-AdfsClaimsProviderTrust -TargetIdentifier "AD AUTHORITY" -AlternateLoginID mail -LookupForests <forest domain> • Forest domain is the DNS name where the users belong to
Social Connections 11 Chicago, June 1-2 2017 Useful links • Submitting a service request • http://www-01.ibm.com/support/docview.wss?uid=swg21507389 • Federated Identity Management documentation • http://www-01.ibm.com/support/knowledgecenter/SSL3JX/admin/SAMLFederatedIdentity/fim_setting_up_fim.html • Complete cookbook set up SAML with Domino • http://www-01.ibm.com/support/docview.wss?uid=swg21614543
Social Connections 11 Chicago, June 1-2 2017 Contact me https://www.linkedin.com/in/debisschopk @debisschopk https://debisschopk.wordpress.com kris.de.bisschop@groupwave.be
PLATINUM SPONSORS GOLD SPONSORS SILVER SPONSORS

Empfohlen

Christian Brothers Services Journey from On Premises Lotus Collaboration to C...
Christian Brothers Services Journey from On Premises Lotus Collaboration to C...Christian Brothers Services Journey from On Premises Lotus Collaboration to C...
Christian Brothers Services Journey from On Premises Lotus Collaboration to C...
LetsConnect
 
Introduction to Box Administration – See Why it Rocks!
Introduction to Box Administration – See Why it Rocks!Introduction to Box Administration – See Why it Rocks!
Introduction to Box Administration – See Why it Rocks!
LetsConnect
 
How a social intranet can be used to drive employee engagement and usage of I...
How a social intranet can be used to drive employee engagement and usage of I...How a social intranet can be used to drive employee engagement and usage of I...
How a social intranet can be used to drive employee engagement and usage of I...
LetsConnect
 
Enterprise collaboration driven by IBM Connections at Raytheon
Enterprise collaboration driven by IBM Connections at RaytheonEnterprise collaboration driven by IBM Connections at Raytheon
Enterprise collaboration driven by IBM Connections at Raytheon
LetsConnect
 
Writing your first Watson Work application, and why you’d want to
Writing your first Watson Work application, and why you’d want toWriting your first Watson Work application, and why you’d want to
Writing your first Watson Work application, and why you’d want to
LetsConnect
 
Migration from 5 to Connections 6 - been there, done that
Migration from 5 to Connections 6 - been there, done thatMigration from 5 to Connections 6 - been there, done that
Migration from 5 to Connections 6 - been there, done that
Sharon James
 
IBM Connections Customizer – A Whole New World of Possibilities
IBM Connections Customizer – A Whole New World of PossibilitiesIBM Connections Customizer – A Whole New World of Possibilities
IBM Connections Customizer – A Whole New World of Possibilities
LetsConnect
 
IBM Connections vs. Office 365 – Episode III
IBM Connections vs. Office 365 – Episode IIIIBM Connections vs. Office 365 – Episode III
IBM Connections vs. Office 365 – Episode III
LetsConnect
 

Empfohlen

Christian Brothers Services Journey from On Premises Lotus Collaboration to C...
Christian Brothers Services Journey from On Premises Lotus Collaboration to C...Christian Brothers Services Journey from On Premises Lotus Collaboration to C...
Christian Brothers Services Journey from On Premises Lotus Collaboration to C...
LetsConnect
 
Introduction to Box Administration – See Why it Rocks!
Introduction to Box Administration – See Why it Rocks!Introduction to Box Administration – See Why it Rocks!
Introduction to Box Administration – See Why it Rocks!
LetsConnect
 
How a social intranet can be used to drive employee engagement and usage of I...
How a social intranet can be used to drive employee engagement and usage of I...How a social intranet can be used to drive employee engagement and usage of I...
How a social intranet can be used to drive employee engagement and usage of I...
LetsConnect
 
Enterprise collaboration driven by IBM Connections at Raytheon
Enterprise collaboration driven by IBM Connections at RaytheonEnterprise collaboration driven by IBM Connections at Raytheon
Enterprise collaboration driven by IBM Connections at Raytheon
LetsConnect
 
Writing your first Watson Work application, and why you’d want to
Writing your first Watson Work application, and why you’d want toWriting your first Watson Work application, and why you’d want to
Writing your first Watson Work application, and why you’d want to
LetsConnect
 
Migration from 5 to Connections 6 - been there, done that
Migration from 5 to Connections 6 - been there, done thatMigration from 5 to Connections 6 - been there, done that
Migration from 5 to Connections 6 - been there, done that
Sharon James
 
IBM Connections Customizer – A Whole New World of Possibilities
IBM Connections Customizer – A Whole New World of PossibilitiesIBM Connections Customizer – A Whole New World of Possibilities
IBM Connections Customizer – A Whole New World of Possibilities
LetsConnect
 
IBM Connections vs. Office 365 – Episode III
IBM Connections vs. Office 365 – Episode IIIIBM Connections vs. Office 365 – Episode III
IBM Connections vs. Office 365 – Episode III
LetsConnect
 
The Pink road – Dorothy’s journey through an all pink wonderland
The Pink road – Dorothy’s journey through an all pink wonderlandThe Pink road – Dorothy’s journey through an all pink wonderland
The Pink road – Dorothy’s journey through an all pink wonderland
LetsConnect
 
Customization & Extensibility in IBM Connections Pink
Customization & Extensibility in IBM Connections Pink Customization & Extensibility in IBM Connections Pink
Customization & Extensibility in IBM Connections Pink
LetsConnect
 
Future of Collaboration
Future of CollaborationFuture of Collaboration
Future of Collaboration
LetsConnect
 
App dev and partner ecosystem for pink social connections 2017
App dev and partner ecosystem for pink social connections 2017App dev and partner ecosystem for pink social connections 2017
App dev and partner ecosystem for pink social connections 2017
Heath McCarthy
 
Social Connections 12. We hired hackers to hack us
Social Connections 12. We hired hackers to hack usSocial Connections 12. We hired hackers to hack us
Social Connections 12. We hired hackers to hack us
Robert Farstad
 
IBM Connections Cloud extreme customization
IBM Connections Cloud extreme customizationIBM Connections Cloud extreme customization
IBM Connections Cloud extreme customization
Daniele Vistalli
 
IBM Connections Customizer: From Zero To Hero
IBM Connections Customizer: From Zero To HeroIBM Connections Customizer: From Zero To Hero
IBM Connections Customizer: From Zero To Hero
LetsConnect
 
IBM Domino 10: A new chapter begins
IBM Domino 10: A new chapter beginsIBM Domino 10: A new chapter begins
IBM Domino 10: A new chapter begins
LetsConnect
 
Computer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for CollaborationComputer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for Collaboration
LetsConnect
 
Integrate External Data With The Business Data Catalog
Integrate External Data With The Business Data CatalogIntegrate External Data With The Business Data Catalog
Integrate External Data With The Business Data Catalog
Tom Resing
 
Ruby on Rails
Ruby on RailsRuby on Rails
Ruby on Rails
arunv
 
Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)
SPC Adriatics
 
FSLogix BriForum 2015 - Ending the Folder Redirection Debate
FSLogix BriForum 2015 - Ending the Folder Redirection DebateFSLogix BriForum 2015 - Ending the Folder Redirection Debate
FSLogix BriForum 2015 - Ending the Folder Redirection Debate
FSLogix
 
Microsoft Ignite Recap: SharePoint & OneDrive for Business with Vlad & Drew
Microsoft Ignite Recap: SharePoint & OneDrive for Business with Vlad & DrewMicrosoft Ignite Recap: SharePoint & OneDrive for Business with Vlad & Drew
Microsoft Ignite Recap: SharePoint & OneDrive for Business with Vlad & Drew
Drew Madelung
 
CKAN for RDM workshop
CKAN for RDM workshopCKAN for RDM workshop
CKAN for RDM workshop
Joss Winn
 
Law techcamp km_18june11
Law techcamp km_18june11Law techcamp km_18june11
Law techcamp km_18june11
lawtechcamp
 
What's New in IBM Connections Social Cloud - September 2014
What's New in IBM Connections Social Cloud - September 2014What's New in IBM Connections Social Cloud - September 2014
What's New in IBM Connections Social Cloud - September 2014
Luis Benitez
 
Managing Projects and Issues with IBM Connections
Managing Projects and Issues with IBM ConnectionsManaging Projects and Issues with IBM Connections
Managing Projects and Issues with IBM Connections
Alan Hamilton
 
Turning the IBM Collaboration Ecosystem Pink
Turning the IBM Collaboration Ecosystem PinkTurning the IBM Collaboration Ecosystem Pink
Turning the IBM Collaboration Ecosystem Pink
LetsConnect
 
Soccnx11 Two wrongs don't make a right - Troubleshooting Connections
Soccnx11 Two wrongs don't make a right - Troubleshooting Connections Soccnx11 Two wrongs don't make a right - Troubleshooting Connections
Soccnx11 Two wrongs don't make a right - Troubleshooting Connections
Nico Meisenzahl
 
Two wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting ConnectionsTwo wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting Connections
LetsConnect
 
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting ConnectionsSocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
panagenda
 

Weitere ähnliche Inhalte

Was ist angesagt?

Future of Collaboration
Future of CollaborationFuture of Collaboration
Future of Collaboration
LetsConnect
 
Computer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for CollaborationComputer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for Collaboration
LetsConnect
 
Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)
SPC Adriatics
 

Was ist angesagt? (18)

The Pink road – Dorothy’s journey through an all pink wonderland
The Pink road – Dorothy’s journey through an all pink wonderlandThe Pink road – Dorothy’s journey through an all pink wonderland
The Pink road – Dorothy’s journey through an all pink wonderland
 
Customization & Extensibility in IBM Connections Pink
Customization & Extensibility in IBM Connections Pink Customization & Extensibility in IBM Connections Pink
Customization & Extensibility in IBM Connections Pink
 
Future of Collaboration
Future of CollaborationFuture of Collaboration
Future of Collaboration
 
App dev and partner ecosystem for pink social connections 2017
App dev and partner ecosystem for pink social connections 2017App dev and partner ecosystem for pink social connections 2017
App dev and partner ecosystem for pink social connections 2017
 
Social Connections 12. We hired hackers to hack us
Social Connections 12. We hired hackers to hack usSocial Connections 12. We hired hackers to hack us
Social Connections 12. We hired hackers to hack us
 
IBM Connections Cloud extreme customization
IBM Connections Cloud extreme customizationIBM Connections Cloud extreme customization
IBM Connections Cloud extreme customization
 
IBM Connections Customizer: From Zero To Hero
IBM Connections Customizer: From Zero To HeroIBM Connections Customizer: From Zero To Hero
IBM Connections Customizer: From Zero To Hero
 
IBM Domino 10: A new chapter begins
IBM Domino 10: A new chapter beginsIBM Domino 10: A new chapter begins
IBM Domino 10: A new chapter begins
 
Computer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for CollaborationComputer Generations and Complexity: The Necessity for Collaboration
Computer Generations and Complexity: The Necessity for Collaboration
 
Integrate External Data With The Business Data Catalog
Integrate External Data With The Business Data CatalogIntegrate External Data With The Business Data Catalog
Integrate External Data With The Business Data Catalog
 
Ruby on Rails
Ruby on RailsRuby on Rails
Ruby on Rails
 
Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)
 
FSLogix BriForum 2015 - Ending the Folder Redirection Debate
FSLogix BriForum 2015 - Ending the Folder Redirection DebateFSLogix BriForum 2015 - Ending the Folder Redirection Debate
FSLogix BriForum 2015 - Ending the Folder Redirection Debate
 
Microsoft Ignite Recap: SharePoint & OneDrive for Business with Vlad & Drew
Microsoft Ignite Recap: SharePoint & OneDrive for Business with Vlad & DrewMicrosoft Ignite Recap: SharePoint & OneDrive for Business with Vlad & Drew
Microsoft Ignite Recap: SharePoint & OneDrive for Business with Vlad & Drew
 
CKAN for RDM workshop
CKAN for RDM workshopCKAN for RDM workshop
CKAN for RDM workshop
 
Law techcamp km_18june11
Law techcamp km_18june11Law techcamp km_18june11
Law techcamp km_18june11
 
What's New in IBM Connections Social Cloud - September 2014
What's New in IBM Connections Social Cloud - September 2014What's New in IBM Connections Social Cloud - September 2014
What's New in IBM Connections Social Cloud - September 2014
 
Managing Projects and Issues with IBM Connections
Managing Projects and Issues with IBM ConnectionsManaging Projects and Issues with IBM Connections
Managing Projects and Issues with IBM Connections
 

Ähnlich wie Open Doors In The Cloud By Using SSO Methodologies Between Your Organisation And IBM

Turning the IBM Collaboration Ecosystem Pink
Turning the IBM Collaboration Ecosystem PinkTurning the IBM Collaboration Ecosystem Pink
Turning the IBM Collaboration Ecosystem Pink
LetsConnect
 
Soccnx11 Two wrongs don't make a right - Troubleshooting Connections
Soccnx11 Two wrongs don't make a right - Troubleshooting Connections Soccnx11 Two wrongs don't make a right - Troubleshooting Connections
Soccnx11 Two wrongs don't make a right - Troubleshooting Connections
Nico Meisenzahl
 
Two wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting ConnectionsTwo wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting Connections
LetsConnect
 
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting ConnectionsSocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
panagenda
 
Calling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with PinkCalling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with Pink
LetsConnect
 
IBM Watson Workspace and Work Services strategy and roadmap
IBM Watson Workspace and Work Services strategy and roadmapIBM Watson Workspace and Work Services strategy and roadmap
IBM Watson Workspace and Work Services strategy and roadmap
LetsConnect
 
Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)
SPC Adriatics
 
Beyond Social
Beyond SocialBeyond Social
Beyond Social
SPC Adriatics
 
Introduction to Box Administration – See Why it Rocks!
Introduction to Box Administration – See Why it Rocks!Introduction to Box Administration – See Why it Rocks!
Introduction to Box Administration – See Why it Rocks!
LetsConnect
 
SharePoint Online vs. On-Premise
SharePoint Online vs. On-PremiseSharePoint Online vs. On-Premise
SharePoint Online vs. On-Premise
Evan Hodges
 
The World of Team Space Tools: Watson Workspace vs. Slack, Teams, Skype, and ...
The World of Team Space Tools: Watson Workspace vs. Slack, Teams, Skype, and ...The World of Team Space Tools: Watson Workspace vs. Slack, Teams, Skype, and ...
The World of Team Space Tools: Watson Workspace vs. Slack, Teams, Skype, and ...
LetsConnect
 

Ähnlich wie Open Doors In The Cloud By Using SSO Methodologies Between Your Organisation And IBM (20)

Turning the IBM Collaboration Ecosystem Pink
Turning the IBM Collaboration Ecosystem PinkTurning the IBM Collaboration Ecosystem Pink
Turning the IBM Collaboration Ecosystem Pink
 
Soccnx11 Two wrongs don't make a right - Troubleshooting Connections
Soccnx11 Two wrongs don't make a right - Troubleshooting Connections Soccnx11 Two wrongs don't make a right - Troubleshooting Connections
Soccnx11 Two wrongs don't make a right - Troubleshooting Connections
 
Two wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting ConnectionsTwo wrongs don’t make a right – Troubleshooting Connections
Two wrongs don’t make a right – Troubleshooting Connections
 
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting ConnectionsSocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
SocCnx11 - Two wrongs don't make a right - Troubleshooting Connections
 
Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...
Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...
Announcing the Connections Cloud Catalog: How to Get new Apps fresh out of th...
 
Calling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with PinkCalling all Developers: Building Connections Apps and Integrating with Pink
Calling all Developers: Building Connections Apps and Integrating with Pink
 
IBM Watson Workspace and Work Services strategy and roadmap
IBM Watson Workspace and Work Services strategy and roadmapIBM Watson Workspace and Work Services strategy and roadmap
IBM Watson Workspace and Work Services strategy and roadmap
 
IBM Connections - Have it YOUR Way!
IBM Connections - Have it YOUR Way!IBM Connections - Have it YOUR Way!
IBM Connections - Have it YOUR Way!
 
Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)Developing social solutions on Microsoft technologies (SP Social and Yammer)
Developing social solutions on Microsoft technologies (SP Social and Yammer)
 
Beyond Social
Beyond SocialBeyond Social
Beyond Social
 
The Who, What, Why and How of Active Directory Federation Services (AD FS)
The Who, What, Why and How of Active Directory Federation Services (AD FS)The Who, What, Why and How of Active Directory Federation Services (AD FS)
The Who, What, Why and How of Active Directory Federation Services (AD FS)
 
Introduction to Box Administration – See Why it Rocks!
Introduction to Box Administration – See Why it Rocks!Introduction to Box Administration – See Why it Rocks!
Introduction to Box Administration – See Why it Rocks!
 
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
SPSVB - Office 365 and Cloud Identity - What Does It Mean for Me?
 
IBM Collaboration Mobile Strategy and a New Way To work
IBM Collaboration Mobile Strategy and a New Way To workIBM Collaboration Mobile Strategy and a New Way To work
IBM Collaboration Mobile Strategy and a New Way To work
 
CIS 2013 Ping Identity Chalktalk
CIS 2013 Ping Identity ChalktalkCIS 2013 Ping Identity Chalktalk
CIS 2013 Ping Identity Chalktalk
 
SharePoint Online vs. On-Premise
SharePoint Online vs. On-PremiseSharePoint Online vs. On-Premise
SharePoint Online vs. On-Premise
 
What’s New and Coming in IBM Connections
What’s New and Coming in IBM ConnectionsWhat’s New and Coming in IBM Connections
What’s New and Coming in IBM Connections
 
The World of Team Space Tools: Watson Workspace vs. Slack, Teams, Skype, and ...
The World of Team Space Tools: Watson Workspace vs. Slack, Teams, Skype, and ...The World of Team Space Tools: Watson Workspace vs. Slack, Teams, Skype, and ...
The World of Team Space Tools: Watson Workspace vs. Slack, Teams, Skype, and ...
 
All you need to know about Orient Me
All you need to know about Orient MeAll you need to know about Orient Me
All you need to know about Orient Me
 
SOCCNX11 All you need to know about Orient Me
SOCCNX11 All you need to know about Orient MeSOCCNX11 All you need to know about Orient Me
SOCCNX11 All you need to know about Orient Me
 

Mehr von LetsConnect

Oh $h@# - How to deal with emotional outbursts and hate in social situations
Oh $h@# - How to deal with emotional outbursts and hate in social situationsOh $h@# - How to deal with emotional outbursts and hate in social situations
Oh $h@# - How to deal with emotional outbursts and hate in social situations
LetsConnect
 
It is not About Connections vs Office 365 - You can have the best of the both...
It is not About Connections vs Office 365 - You can have the best of the both...It is not About Connections vs Office 365 - You can have the best of the both...
It is not About Connections vs Office 365 - You can have the best of the both...
LetsConnect
 
Using ibm connections to enhance university courses
Using ibm connections to enhance university coursesUsing ibm connections to enhance university courses
Using ibm connections to enhance university courses
LetsConnect
 
IBM Collaboration Framework in action: Customer success stories
IBM Collaboration Framework in action: Customer success storiesIBM Collaboration Framework in action: Customer success stories
IBM Collaboration Framework in action: Customer success stories
LetsConnect
 
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream CollaborationNew Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
LetsConnect
 

Mehr von LetsConnect (20)

Installing Component Pack 6.0.0.6
Installing Component Pack 6.0.0.6Installing Component Pack 6.0.0.6
Installing Component Pack 6.0.0.6
 
Oh $h@# - How to deal with emotional outbursts and hate in social situations
Oh $h@# - How to deal with emotional outbursts and hate in social situationsOh $h@# - How to deal with emotional outbursts and hate in social situations
Oh $h@# - How to deal with emotional outbursts and hate in social situations
 
It is not About Connections vs Office 365 - You can have the best of the both...
It is not About Connections vs Office 365 - You can have the best of the both...It is not About Connections vs Office 365 - You can have the best of the both...
It is not About Connections vs Office 365 - You can have the best of the both...
 
Using ibm connections to enhance university courses
Using ibm connections to enhance university coursesUsing ibm connections to enhance university courses
Using ibm connections to enhance university courses
 
IBM Connections 6 Component Pack
IBM Connections 6 Component PackIBM Connections 6 Component Pack
IBM Connections 6 Component Pack
 
IBM Connections 6.0 CR3 New Features
IBM Connections 6.0 CR3 New FeaturesIBM Connections 6.0 CR3 New Features
IBM Connections 6.0 CR3 New Features
 
10 years of IBM Connections
10 years of IBM Connections10 years of IBM Connections
10 years of IBM Connections
 
IBM Collaboration Framework in action: Customer success stories
IBM Collaboration Framework in action: Customer success storiesIBM Collaboration Framework in action: Customer success stories
IBM Collaboration Framework in action: Customer success stories
 
Design for the Digital Workspace
Design for the Digital WorkspaceDesign for the Digital Workspace
Design for the Digital Workspace
 
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream CollaborationNew Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
New Ways to Deliver Business Outcomes with INtelligent Workstream Collaboration
 
Power up your Salesforce Opportunities by using IBM Watson Workspace as your ...
Power up your Salesforce Opportunities by using IBM Watson Workspace as your ...Power up your Salesforce Opportunities by using IBM Watson Workspace as your ...
Power up your Salesforce Opportunities by using IBM Watson Workspace as your ...
 
There is nothing more practical than a good theory
There is nothing more practical than a good theoryThere is nothing more practical than a good theory
There is nothing more practical than a good theory
 
Kubernetes Basics for Connections Admins
Kubernetes Basics for Connections AdminsKubernetes Basics for Connections Admins
Kubernetes Basics for Connections Admins
 
Intelligent Collaboration driving Digital Transformation
Intelligent Collaboration driving Digital TransformationIntelligent Collaboration driving Digital Transformation
Intelligent Collaboration driving Digital Transformation
 
Developing IBM Connections Community Apps using Domino
Developing IBM Connections Community Apps using DominoDeveloping IBM Connections Community Apps using Domino
Developing IBM Connections Community Apps using Domino
 
You Get What You Give
You Get What You GiveYou Get What You Give
You Get What You Give
 
Building Custom ibm Watson Workspace Templates to make you and your team more...
Building Custom ibm Watson Workspace Templates to make you and your team more...Building Custom ibm Watson Workspace Templates to make you and your team more...
Building Custom ibm Watson Workspace Templates to make you and your team more...
 
ICS INtegration with Node-RED and Open Source
ICS INtegration with Node-RED and Open SourceICS INtegration with Node-RED and Open Source
ICS INtegration with Node-RED and Open Source
 
Communities as the fundament of social learning
Communities as the fundament of social learningCommunities as the fundament of social learning
Communities as the fundament of social learning
 
It's not IBM or O365 - Integrate and Embrace
It's not IBM or O365 - Integrate and EmbraceIt's not IBM or O365 - Integrate and Embrace
It's not IBM or O365 - Integrate and Embrace
 

KĂźrzlich hochgeladen

Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best ServicesMysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Dipal Arora
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
dlhescort
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
lizamodels9
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Sheetaleventcompany
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
rajveerescorts2022
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
amitlee9823
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
daisycvs
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
amitlee9823
 
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
dollysharma2066
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
Abortion pills in Kuwait Cytotec pills in Kuwait
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
uneakwhite
 
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
Call Girls in Nagpur High Profile Call Girls
 

KĂźrzlich hochgeladen (20)

Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
Call Girls Service In Old Town Dubai ((0551707352)) Old Town Dubai Call Girl ...
 
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best ServicesMysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
Mysore Call Girls 8617370543 WhatsApp Number 24x7 Best Services
 
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service NoidaCall Girls In Noida 959961⊹3876 Independent Escort Service Noida
Call Girls In Noida 959961⊹3876 Independent Escort Service Noida
 
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
Enhancing and Restoring Safety & Quality Cultures - Dave Litwiller - May 2024...
 
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
Call Girls In DLf Gurgaon ➥99902@11544 ( Best price)100% Genuine Escort In 24...
 
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
Call Girls Zirakpur👧 Book Now📱7837612180 📞👉Call Girl Service In Zirakpur No A...
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
 
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
Nelamangala Call Girls: 🍓 7737669865 🍓 High Profile Model Escorts | Bangalore...
 
RSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors DataRSA Conference Exhibitor List 2024 - Exhibitors Data
RSA Conference Exhibitor List 2024 - Exhibitors Data
 
John Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdfJohn Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdf
 
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
Quick Doctor In Kuwait +2773`7758`557 Kuwait Doha Qatar Dubai Abu Dhabi Sharj...
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
 
Falcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to ProsperityFalcon's Invoice Discounting: Your Path to Prosperity
Falcon's Invoice Discounting: Your Path to Prosperity
 
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023Mondelez State of Snacking and Future Trends 2023
Mondelez State of Snacking and Future Trends 2023
 
Value Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and painsValue Proposition canvas- Customer needs and pains
Value Proposition canvas- Customer needs and pains
 
Organizational Transformation Lead with Culture
Organizational Transformation Lead with CultureOrganizational Transformation Lead with Culture
Organizational Transformation Lead with Culture
 
Uneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration PresentationUneak White's Personal Brand Exploration Presentation
Uneak White's Personal Brand Exploration Presentation
 
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
(Anamika) VIP Call Girls Napur Call Now 8617697112 Napur Escorts 24x7
 

Open Doors In The Cloud By Using SSO Methodologies Between Your Organisation And IBM

  • 1. Social Connections 11 Chicago, June 1-2 2017 Open Doors In The Cloud By Using SSO Methodologies Between Your Organisation And IBM Kris De Bisschop, @debisschopk
  • 3. Social Connections 11 Chicago, June 1-2 2017 A little about me • CEO @ • Administrator ICS Portfolio o IBM Notes/Domino o IBM Sametime o IBM Notes Traveler o IBM Connections o TDI • Social Business speaker • IBM Champion Collaboration Solutions • Love high-level issues • Badminton
  • 4. Social Connections 11 Chicago, June 1-2 2017 Single sign-on (SSO) • Session and user authentication service • Allows the use of one set of login credentials • No more login prompts when switching applications
  • 5. Social Connections 11 Chicago, June 1-2 2017 SAML • Security Assertion Markup Language • Established as a Web SSO standard in early 2008 • XML-based • Built from WebServices Security token concepts • SAMLResponse is sent as a POST body, contains an Assertion with user details, most important one is NameId, ex InternetAddress
  • 6. Social Connections 11 Chicago, June 1-2 2017 SAML • Identity Provider (IdP) • LDAP • Active Directory Federation Service (ADFS) • Tivoli Federated Identity Manager • … • Service Provider (SP) • Domino • … • Client • Browser • IBM Notes Client
  • 7. Social Connections 11 Chicago, June 1-2 2017 SAML • User tries to access SP application • As user is not authenticated the first time, SP redirects to IdP • User authenticates to IdP • IdP redirects user to SP by sending SAMLResponse over HTTP POST inside hidden form. SP processes SAMLResponse and redirects user to the application User Application Service Provider (SP) / client Identity Provider (IdP) 1 2 4 3 1 2 3 4
  • 8. Social Connections 11 Chicago, June 1-2 2017 Use Case On-Premise Cloud IdP SP SP
  • 9. Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • Standard • Federated • UserChoice (aka Modified) • AdminChoice (aka Partial)
  • 10. Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • Standard • Default type • Users must log in with email address and password
  • 11. Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • Federated • Users don’t have username/password on Connections Cloud • Applies to all users • The IdP must be available from the internet or VPN • Services that don’t support SAML or application passwords, don’t work • POP • IMAP
  • 12. Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • UserChoice • Users have the choice to use Organization login or Connections Cloud credentials • Applies to all users • You do not need to expose IdP to internet
  • 13. Social Connections 11 Chicago, June 1-2 2017 IBM Connections Cloud Login Types • AdminChoice • Admin specifies login type, default type is Standard • Login type can be based on • Type of users: office users vs mobile users • Application-based: POP/IMAP or not
  • 14. Social Connections 11 Chicago, June 1-2 2017 SSO IBM Connections Cloud • IBM Connections Cloud products rely on SAML • Your organization is the IdP • Connections Cloud is the SP • Three flow models exist • IdP-initiated • SP-initiated • SP-initiated model for mobile apps and plug-ins
  • 15. Social Connections 11 Chicago, June 1-2 2017 SSO IBM Connections Cloud • Idp-initiated • User accesses local resource with authentication • Webmail • Intranet • … • User clicks a link that redirects to Connections Cloud • SSO process is initiated, SAML assertion is sent to Connections • If validated, user accesses Connections
  • 16. Social Connections 11 Chicago, June 1-2 2017 SSO IBM Connections Cloud • SP-initiated • User navigates to authentication page Connections Cloud • User clicks “Use My Organization’s Login” and enters credentials • Connections Cloud redirects to IdP • SSO process is initiated, SAML assertion is sent to Connections • If validated, user accesses Connections
  • 17. Social Connections 11 Chicago, June 1-2 2017 SSO IBM Connections Cloud • SP-initiated for mobile apps and plug-ins • App requests to Connections Cloud for login endpoint • Connections Cloud looks up email address and responds with URL of authentication mechanism • App performs basic or simple form authentication • SSO process is initiated, SAML assertion is sent to Connections • If validated, user accesses Connections
  • 18. Social Connections 11 Chicago, June 1-2 2017 Plug-Ins and Mobile Apps • Plug-Ins • Connections Desktop Plug-In for Windows • Connections Desktop Plug-In for Mac • Connections Plug-In for MS Outlook • Mobile Apps • Connections mobile • Chat • Meetings • Notes Traveler
  • 19. Social Connections 11 Chicago, June 1-2 2017 Application passwords • A way to bypass regular log in process • Can be used by Plug-Ins and Mobile apps • Generated using a strong random number generator • Application password can be revoked • Activated by the administrator • When a user generates an application password, it is displayed only one time
  • 20. Social Connections 11 Chicago, June 1-2 2017 Prepare for federated identity management • Choose the SAML version to use, typically SAMLv2 • Choose the federation type • Federated • UserChoice • AdminChoice • Review the flow models • IdP-initiated • SP-initiated • SP-initiated model for mobile apps and plug-ins • Implement SAML in your environment • Can be done between Domino and ADFS • Make sure to use the email address as NameID • Prepare for Plug-Ins and mobile devices • Test your SAML set up internally • Configure SAML with IBM Connections Cloud
  • 21. Social Connections 11 Chicago, June 1-2 2017 Enable federated identity management • Send an email to support@collabserv.com • Request to have federated identity management enabled • Don’t forget your Connections Customer ID • You will need to send the FederationMetadata • https://<MY-ADFS-SERVER.yourdomain.com/FederationMetadata/2007-06/FederationMetadata.xml • Set up a Relying party trust in ADFS when you receive the info back from support
  • 22. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Navigate to "Relying Party Trusts" and click on "Add Relying Party Trust"
  • 23. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Select to import a file and refer to the received xml
  • 24. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Specify a display name, like IBM Cloud
  • 25. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
  • 26. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
  • 27. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
  • 28. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Click on add rule
  • 29. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
  • 30. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS
  • 31. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • Add a second rule based on the template Transform an Incoming Claim Transform an Incoming Claim
  • 32. Social Connections 11 Chicago, June 1-2 2017 Configure Relying party trust ADFS • For the Incoming claim type, select E-mail Address. • For the Outgoing claim type, select Name ID. • For the Outgoing name ID format, select Email. • Select Pass through all claim values. • On your AD FS server, open a PowerShell command window and issue the following command: Set-AdfsClaimsProviderTrust -TargetIdentifier "AD AUTHORITY" -AlternateLoginID mail -LookupForests <forest domain> • Forest domain is the DNS name where the users belong to
  • 33. Social Connections 11 Chicago, June 1-2 2017 Useful links • Submitting a service request • http://www-01.ibm.com/support/docview.wss?uid=swg21507389 • Federated Identity Management documentation • http://www-01.ibm.com/support/knowledgecenter/SSL3JX/admin/SAMLFederatedIdentity/fim_setting_up_fim.html • Complete cookbook set up SAML with Domino • http://www-01.ibm.com/support/docview.wss?uid=swg21614543
  • 34. Social Connections 11 Chicago, June 1-2 2017 Contact me https://www.linkedin.com/in/debisschopk @debisschopk https://debisschopk.wordpress.com kris.de.bisschop@groupwave.be
  • 35.