Intro to SSO Implementation on SharePoint 2013 with OneLogin
posted by Phi-lac Nguyen
on Sep 23, 2015
There are different ways to implement Single Sign On (SSO). In this tutorial, I will introduce one of the methods: OneLogin. OneLogin is a third identity provider that provides free SSO for up to 3 SharePoint applications.
Active Directory Connector
After subscribing to the OneLogin website, connect to Active Directory on OneLogin. The steps, explained on OneLogin Zendesk, are quite easy to follow. However, be careful on the following steps:
- The port 8080 have to be allowed to outbound on the firewall. It’s the default port of the AD connector and can be changed by another one if needed.
- The user used to run the service can be different depending if you have a single AD forest or not.
- If the AD Connector is installed in DMZ, these port have to be allowed: 389,636,88,464,53.
You have the choice on the Organization Unit if you want to synchronize with OneLogin.
Configuration SAML for Sharepoint 2013
Review the procedure provided by OneLogin here.
This is how the PowerShell script looks like:
This script has to be executed with the SharePoint PowerShell. At the end you should have something like that:
If you have any issue you can remove the Identity Provider from your SharePoint farm with this cmdlet:
SharePoint is the simplest, most cost-effective way to organize, share and collaborate more effectively. This tool provides a central storage and collaboration spaces for documents and ideas. If businesses are already using Office 365, SharePoint is a great way to enhance Microsoft Office 365’s capabilities. However, even if SharePoint has proven its qualities and collected a high satisfaction rate, some businesses are still reluctant to join the concept. So here are five benefits of using SharePoint for your business.