Single Sign-On allows organizations to use their already defined domain authentication and not require users to create a unique username/password for Serviceaide Intelligent Service Management.
...
Add the metadata that is generated from Intelligent Service Management to your IdP to enable the SAML communication between them. For information about generating the metadata, see Configure SAML Single Sign-On in CSM.
Follow these steps on Microsoft ADFS 3.0:
...
- The Permit all users to access this relying party option is selected.
- An entry for Intelligent Service Management is displayed in the Endpoints tab.
- The Secure Hash Algorithm (SHA) value under the Advanced tab is set to SHA-1.
- On the Finish page, select Open the Edit Claim Rules dialog for this relying party trust when the wizard closes. The Edit Claim Rules dialog helps you set the attributes for identifying a user.
- Add user identification attributes in the Edit Claim Rules dialog. For more information about claim rules, see Configure Identity Provider To Send User Identifier As Name ID.
Intelligent Service Management is added as a trusted service provider in your IdP.
...
- Access the Edit Claim Rules dialog as instructed in Add CSM as Trusted Service Provider in the IdP.
- Click Issuance Transform Rules, Add Rules. Select the rule template Send LDAP Attributes as Claim and click Next.
- Configure the claim rule:
- Specify a name for the rule. For example, Send Principle as Name ID.
- Select the location for storing this rule. For example, Active Directory.
- Map the LDAP attributes to outgoing claim type. For example, LDAP Attribute - User Principle Name and Outgoing Claim Type - Name ID.
- Click Finish and confirm that the new rule is displayed in the Issuance Transform Rules tab.
- Click Apply and then click OK.
...