SAML and Microsoft ADFS
- Last updated
- Save as PDF
SAML 2.0 single sign-on supports integration with Microsoft ADFS. ADFS is a service provided by Microsoft as a standard role for Windows Server that provides a web login using existing Active Directory credentials.
Serraview can only assist you with how to configure SAML on the Serraview instance. You will need to contact Microsoft if you require further assistance with setting up SAML with ADFS.
Prerequisites
To use ADFS to log into your Serraview instance, you will need the following:
- Active Directory instance where all users have an email address attribute.
- Server running Windows Server.
- Serraview’s SAML metadata file.
- Optional - SSL certificate to sign your ADFS login page.
SAML and ADFS Configuration Overview
Below is an overview of the configuration steps.
| No. | Description | Responsible |
|---|---|---|
| 1 | Client IT team will install and configure the ADFS service, this is beyond the scope of these instructions, refer to the Microsoft documentation. | Client IT team |
| 2 | After the ADFS is configured the Client IT team must generate the Client’s SAML metadata file and send this to Serraview Support team. | Client IT team |
| 3 |
Set up SAML in Serraview Configuration, refer to Set up SAML in Serraview Configuration. |
Serraview Support team |
| 4 |
Configure the Serraview Default User Role, so when a new user is created as an SSO user they will be assigned the default user role, refer to Configure Default User Role and the Logon Identifier. |
Serraview Support team |
| 5 | Serraview generates the Serraview SAML metadata file and sends this to Client IT team. | Serraview Support team |
| 6 | Client IT team to configure the Serraview SAML metadata in ADFS service. | Client IT team |