Overview
This article explains how to integrate PIVOTAL UX 6.6.3 using Active Directory on Cloud with SAML.
Also explained are steps to configure SSO with AD Azure using SAML.
Solution
You need to do the following:
-
Change the authentication mode in Pivotal - to change the authentication mode from Windows authentication to OAUTH/SSO authentication, you must change the authentication option in IIS Manager and in the Web.config file.
Please review the information in the attached Pivotal CRM 6.6.1 UXClient Installation Configuration Guide - Page 3-5 Changing Authentication Mode for details. Also, here are the steps for your convenience:
- Open IIS Manager.
- In IIS Manager, double-click Authentication under the IIS group.
- In the Authentication window, to enable OAUTH/SSO authentication, right-click
Anonymous Authentication and click Enable.
Note: When you enable a new authentication mode, ensure that you disable the other mode. - Navigate to the ..\Program Files (X86)\Aptean\Pivotal CRM\UX Client\www
folder and open the Web.config file. - In the Web.config file, locate the <appSettings> tag.
- Change the value of the AuthenticationMode key to OAUTH to match the value
set in the IIS Authentication window.
Please see a Sample UX Web Config that is working with Azure. - Save Web.config.
- Restart IIS.
- Restart PBS.
- Open IIS Manager.
- Configure the Pivotal Saml.config file.
Please see a Sample UX SAML Config file that is working with Azure.
-
Add an Enterprise Application in Azure with the details to use it as SAML provider.
For more information, refer to the following guide:
Quickstart: View the list of applications that are using your Azure Active Directory (Azure AD) tenant for identity management.
Also, you can review a quick video of how our specialist's current SAML Application looks on the Azure side. And here is a quick video showing how it works.
Related Article:
Understanding Supported SAML Flows: IdP-Initiated and SP-Initiated
Priyanka Bhotika
Comments