• Add a Comment
  • Edit
  • More Actions v
  • Quarantine this Entry

Comments (2)

1 Jason Christian commented Permalink

Hey Thanks for this Blog, it is really useful.

2 Tan Bui commented Permalink

Thanks Shane for the article.SP-initiated sign-on works OK also using SAML 2.0 with the configurations in your article.

Summary of additional steps as below at a high level.
1. In the salesforce admin console Configure a domain for your company. This will enable a http://yourcomany.my.salesforce.com URL for SPI Sign On
Info here: https://ap1.salesforce.com/help/doc/en/domain_name_overview.htm
2. In the SSO setup screen, configure login/logout URLs to use your TFIM instance. I suggest using a redirect to pkmslogout as the logout URL to log out of the TFIM session if accessing from the internet for security reasons.

Add a Comment Add a Comment