Is there a way to make SSO work from mydomain.my.salesforce.com instead of https://adfs.contoso.com/adfs/ls/idpinitiatedsignon.aspx?loginToRp=https://saml.salesforce.com ?

I would like it to be more of a seamless experience. Am I missing a step?

Thank you.

February 21, 2017
·
Like
0
·
Follow
1

Best Answer chosen by Kevin Blumenfeld

JLA.ovh
Yes, think about a Service Provider (Salesforce) initiated flow. When trying to access Salesforce, if Salesforce has no valid session, your user will be redirected to your identity provider (adfs.contoso.com) with a SAML request, then adfs will authenticate the user and provide a SAML response to Salesforce, granting access. To avoid a login screen on Salesforce, configure the attributes of your my domain to allow only your sso configuration and not login password

February 21, 2017
·
Like
0
·
Dislike
0

You need to sign in to do that.

Need an account? Sign Up

Have an account? Sign In

Dismiss

Browse by Topic

Welcome to Support!

Show

sorted by

Is there a way to make SSO work from mydomain.my.salesforce.com instead of https://adfs.contoso.com/adfs/ls/idpinitiatedsignon.aspx?loginToRp=https://saml.salesforce.com ?

You need to sign in to do that.