• Rest API Integration
  • NEWBIE
  • 25 Points
  • Member since 2011

  • Chatter
    Feed
  • 1
    Best Answers
  • 1
    Likes Received
  • 0
    Likes Given
  • 10
    Questions
  • 5
    Replies

Hi,

                     I did SP initiated SSO for SalesForce and OpenAM successfully.

In SalesForce SSO setting I used Identity Provider Login URL : http://localhost:8080/opensso/SSOPOST/metaAlias/idp                      

This URL accept SAML request and created SAML Assertion for SalesForce with IDP default login authentication.

 

Instead of above URL I when I use my Custom Authentication Module URL.

It does

  1. It redirect to IDP with custom authentication
  2. Does the authentication and display IDP home page.

It won’t show SalesForce home page.

I checked debug log : Its not creating SAML assertion for SalesForce.

 

                Is it possible to create SAML assertion from IDP ?

Or

              Custom auth module has to take care to create SAML assertion ?

We now have single sign on (SSO) working for Salesforce.com against our corporate AD. Hooray!

(We used this guide: http://wiki.developerforce.com/page/Single_Sign-On_with_SAML_on_Force.com)

 

However, only the IDP initiated login works currently (users must start by browsing to our OpenAM server).

 

How do we configure Salesforce.com and OpenAM to allow SP initiated login (user can login straight into Salesforce.com)?

 

Thanks, Rob.

Hi,

I am doing integration of SalesForce and OpenSSO with SAML.

I have implemented steps mentioned in

http://wiki.developerforce.com/page/Single_Sign-On_with_SAML_on_Force.com site.

    There are two important use cases for SAML –

           1. Identity Provider Initiated Login,

                             where a user starts directly at their identity provider, logs in, and is then redirected to a landing page at the service provider;

                            This case working fine 

            2. Service Provider Initiated Login,

                            where a user starts by clicking a link to the the service provider (e.g. a bookmark, mailed link, etc.) and temporarily redirected to the identity provider for authentication, then returned to the link they initially requested.

 

I am trying to implement 2nd Scenario : I am performing following steps

           1. created my domain in SalesForce and deployed for Users

           2. Added Identity Provider in Single Sign-On Settings

           3. When I access My Domain URL. It redirect me to Identity provider login page.

           4. After login to IDP it won’t redirect back to SalesForce page. It shows IDP success page.

 

How should I redirect back to SalesForce success page?

Hello,

        I want to do authentication from my java client. I got Rest API which authenticate using web Application client and its working fine. But my requirement is little bit different as I need to use normal java client which will authenticate me directly to Salesforce site.

        

 

Regards,

Deepak