• No results found

HP Software as a Service

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "HP Software as a Service"

Copied!
7
0
0

Loading.... (view fulltext now)

Download now ( 7 Page )

Full text

(1)

HP Software as a Service

Software Version: 6.1

Federated SSO

Document Release Date: August 2013

(2)

Legal Notices

Warranty

The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.

The information contained herein is subject to change without notice.

Restricted Rights Legend

Confidential computer software. Valid license from HP required for possession, use or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under vendor's standard commercial license.

Copyright Notice

© Copyright 2013 Hewlett-Packard Development Company, L.P.

Trademark Notices

Adobe® is a trademark of Adobe Systems Incorporated.

Microsoft® and Windows® are U.S. registered trademarks of Microsoft Corporation.

UNIX® is a registered trademark of The Open Group.

(3)

Setting Up Federated Single Sign On (SSO)

HP SaaS customers can log in to HP SaaS solutions using Federated Single Sign On (SSO). This means that you will be able to access your HP SaaS solutions by signing on with your corporate credentials. To set up Federated SSO, your organization must use a Security Assertion Markup Language 2.0 (SAML 2.0) compliant Identity Provider (IdP) that is configured to communicate with an HP SaaS Service Provider (SP). SAML enables seamless SSO from a browser, by asserting the identity of the user to the HP SaaS solution.

As IdPs come in all shapes and sizes, the following topic discusses in general what you must do to configure Federated SSO. As you will see in the description below, the person in your organization responsible for managing your IdP will need to interact with the HP SaaS support team to

successfully set up a trust between your IdP and the HP SaaS SP.

Before you set up Federated SSO:

l Ensure you have a working SAML 2.0 compliant Identity Provider (IdP).

l Identify someone in your organization who is familiar with configuring and managing your organization's IdP.

l Ensure that your IdP's system clock is synchronized with a reliable time source. If it is not, tokens generated will be unusable and SSO will fail.

Setting Up Federated Single Sign On (SSO)

Page 3 of 7 HP Software as a Service (6.1)

(4)

Summary of Federated SSO Setup

(5)

Setting Up Federated SSO in a bit more detail

1. Ensure that your SAML 2.0 compliant IdP is working and that you have identified the person in your organization who is responsible for configuring your IdP.

2. From the HP SaaS Customer Portal, open a Service Request to the HP SaaS support team to assist setting up a trust relationship between your IdP and the HP SaaS Service Provider.

Note:

n To open a Federated SSO Service request, in the Customer Portal, select Open New Request -> Request a Service -> SaaS Customer Portal -> SSO Federation -> Set up a connection to your organization's IdP.

n Ensure that in your request details you include the name of the IT person in your organization who is familiar with your SAML 2.0 compliant IdP.

3. The HP SaaS support team sends you the Service Provider (SP) metadata.xml file that contains connection information that you use to create a trust between your IdP server and the HP SaaS SP.

Note: The metadata.xml file contains information such as the SSO server name and the public key. This file will be used by your IdP expert when setting up the trust.

4. Configure an IdP connection to the HP SaaS SP using the HP SaaS metadata.xml file as an input value.

5. Export your IdP metadata.xml file with your public key certificate, and securely transfer your metadata.xml file to the HP SaaS support team.

Note:

n The metadata.xml file contains information such as the SSO server name and your public key.

n The SAML Subject must be an email address. Other SAML attributes include the First_

Name, Last_Name, and Phone.

6. The HP SaaS support team configures its SSO software for the connection.

7. The HP SaaS support team sends you a URL to test that Federated SSO works, and that you can log in via your IdP. Access the URL and verify you can log in via your IdP endpoint.

If successful, you can Accept the Request resolution.

Setting Up Federated Single Sign On (SSO)

Page 5 of 7 HP Software as a Service (6.1)

(6)

8. When the test is successful, HP SaaS sends you a URL to distribute to your users for logging in to HP SaaS with Federated SSO.

How does the connection process work?

Once Federated SSO has been configured, the process works as follows:

Note: Steps 2 to 7 happen in the background, and are transparent to the user.

1. The user accesses the HP SaaS product instance with the URL that was that provided.

HP SaaS checks if the user is authenticated. If the user is authenticated, permission is given to access the HP SaaS product instance.

2. If the user is not authenticated, the user is redirected to the HP SaaS Service Provider (SP) to initiate SSO.

3. The user’s browser is then redirected to the customer IdP.

4. Once authenticated by the corporate side, a SAML token is sent to the user’s browser.

5. The SAML assertion is then forwarded to the HP SaaS SP.

6. If you are a valid HP SaaS user for your customer account, an SSO token is returned to the user’s browser.

(7)

7. The user’s browser then returns a token to HP SaaS and access is granted for the product instance.

Setting Up Federated Single Sign On (SSO)

Page 7 of 7 HP Software as a Service (6.1)

References

Download now ( PDF - 7 Page - 218.64 KB )

Related documents

HP Software-as-a-Service (SaaS) operations overview. Customer handbook

Once requests for service are received, HP SaaS operations support representatives create support cases in the HP request management system and track the work status until it

Bennin - City of Blood

five days, and in thirty-four days to have taken the chief town ; in twelve days more, the city having.. been left to the Protectorate forces, to

Media Studies the Essential Resource

Increasingly, the study of media institutions can be undertaken as a purely fact-finding exercise; it is easy to determine which media conglomerates own which newspapers,

Wesley J. Hellman on Flann O'Brien

According to Althusser’s analysis of Marx, because no mode of production may be maintained unless the social formations which emerge out of it also serve to reproduce that

QuickSpecs. Models HP QMH Gb Fibre Channel Host Bus Adapter B21. HP QMH Gb FC HBA for BladeSystem c-class.

Recommended Services Recommended HP Care Pack Services for optimal satisfaction with your HP product 3-Year HP 24x7 4 hour Response, Hardware Support Onsite Service.. Provides you

ANZSCO Descriptions

 Management Information Systems  Object oriented technologies  Project Management  Quality management  Requirements gathering  Software validation 

500,000+ MEMBERS AND COUNTING... CONNECTING THE GLOBAL OIL & GAS COMMUNITY

MONTHLY IMPRESSIONS DURATION 1.5M 30 Days MONTHLY PRICE $6,800 OILPRO SPONSORSHIP MEDIA KIT... With the Leaderboard Ad, your message is always above the fold, and locate at the top

Washington Statewide Financial Suite of Tools. April 25, 2008

Management Billing & Revenue Travel & Expense Management Agreement Management Reporting RESULTS Central Services Applications Agency Business Applications. SYSTEM