Configuring single sign-on (SSO) for browser-based access to HCL Connections in SmartCloud for Social Business | HCL Digital Experience
Single sign-on (SSO) for browser-based access to HCL Connections in SmartCloud for Social Business is enabled by using Service Provider Initiated Authentication Flow. You can enable SSO for all links, including external URLs, custom markup, search results, and social portlets.
About this task
By default, if an unauthenticated user is working within an HCL Connections Integration Asset, such as a social rendering list, and clicks a URL that points to the web user interface for HCL Connections in SmartCloud for Social Business, the user is redirected to the HCL Connections login screen. This redirect to the HCL Connections login screen occurs if the user is not authenticated or if their authentication expired. Enabling Service Provider Initiated Authentication Flow prevents this redirect to the HCL Connections login screen. Instead, the user is authenticated by using the Tivoli Federated Identity Manager server.
Procedure
- Contact SmartCloud for Social Business support. Go to HCL Sametime for more information.
- In your email, request to have Service Provider Initiated Authentication Flow enabled for your system.
Results
- In the prompt that opens, the user selects Use My Organization's Login Page.
- The user specifies their email address.
- The user is redirected to the local Tivoli Federated Identity Manager server and then back to the HCL Connections in SmartCloud for Social Business web user interface without any further user interaction.
- The user is asked if they want to be remembered. The user specifies yes.
- The requested content displays for the user.
- The user is redirected to the local Tivoli Federated Identity Manager server and then back to the HCL Connections in SmartCloud for Social Business web user interface without any further user interaction.
- The requested content displays for the user.