Sign Up ›
  • Delegated Authentication (SSO)
  • NEWBIE
  • 0 Points
  • Member since 2011
  • Chatter
    Feed
  • 0
    Best Answers
  • 0
    Likes Received
  • 0
    Likes Given
  • 3
    Questions
  • 0
    Replies
1 replies

Delegated Authentication (SSO)

I need to use delegated authentication to enable single sign on (SS0) when going between our server in DMZ and SFDC.

 

  1. How the secure channel will be establish between SFDC and our DMZ server? (We propose VPN solution)
  2. If it is through HTTPS, let us know what need to be done from our side.
  3. As per our policy, we will not publish our server to outside the world. (NATing)
  4. Is that trusted certificate has to apply on our server. Who will provide us the trusted certificate?
  5. As per the architecture of SFDC, there are load balancers placed in front of the servers, then why it is required to white list mentioned range of 512 IPs in the firewall?

 

Please let us know the mentioned concerns to have a best solution and secure connectivity.

0 replies

Viswanathraju

Delegated Authentication (SSO) Security Aspects

 

I need to use delegated authentication to enable single sign on (SS0) when going between an intranet application and SFDC.

 

  1. How the secure channel will be establish between SFDC and our DMZ server? (We propose VPN solution)
  2. If it is through HTTPS, let us know what need to be done from our side.
  3. As per our policy, we will not publish our server to outside the world. (NATing)
  4. Is that trusted certificate has to apply on our server. Who will provide us the trusted certificate?
  5. As per the architecture of SFDC, there are load balancers placed in front of the servers, then why it is required to white list mentioned range of 512 IPs in the firewall?

 

Please let us know the mentioned concerns to have a best solution and secure connectivity.

0 replies

Delegated Authentication (SSO) Security Aspects

I need to use delegated authentication to enable single sign on (SS0) when going between an intranet application and SFDC.

 

  1. How the secure channel will be establish between SFDC and our DMZ server? (We propose VPN solution)
  2. If it is through HTTPS, let us know what need to be done from our side.
  3. As per our policy, we will not publish our server to outside the world. (NATing)
  4. Is that trusted certificate has to apply on our server. Who will provide us the trusted certificate?
  5. As per the architecture of SFDC, there are load balancers placed in front of the servers, then why it is required to white list mentioned range of 512 IPs in the firewall?

 

Please let us know the mentioned concerns to have a best solution and secure connectivity.