Zum Hauptinhalt springen
Deutsch
|
English

Service Provider Facility (SAML)

Support Center

IC2633

SAML (Security Assertion Markup Language) is an open standard that allows identity providers to securely transmit login credentials to a service provider. The FM Portal can be configured as a service provider. By configuring the FM Portal as a service provider, single sign-on can be implemented.

Prerequisites

  • You have administrative rights in the portal.

  • You have obtained a certificate for the portal from the identity provider’s certificate authority.

Procedure in the FM Portal

Prepare certificates:

Path to the starting point: Control Panel - Portal Options - Global Basic Data - Certificates

Note: You can create certificates via the FM Portal or import an existing certificate.

  1. First, create a certificate entry. To do this, click New....

  2. In the Manage Certificate section, click the ellipsis icon.

  3. If you have a self-created .pfx file, click Import Certificate and select your certificate.
    If you want to create a certificate, click the Create .cer Certificate or Create .pfx
    Certificate button and assign a password. Activate your certificate!

  4. Click Save in the toolbar.

Configuring the Portal as a Service Provider

  1. Go to Control Panel - Portal Options - Interfaces - Interface Configuration - SAML - Local Service Provider. Click New... to create the service provider entry.

  2. Enter a name for your organization and fill in the remaining fields.

  3. For the Certificate Authentication and Certificate Encryption entries, select the certificate entry you created
    earlier.

  4. Close the entry and reopen it.

  5. At the bottom of the Service Provider section, click Export Metadata.

  6. Import the generated XML file into the desired identity provider.

Configuring an Identity Provider

  1. Go to Control Panel - Portal Options - Interfaces - Interface Configuration - SAML - Identity Provider.

  2. Click New... in the toolbar of the list. An empty form will open.

  3. Click Import Metadata and select the metadata file you obtained from the identity provider.

  4. Fill in the Code field and check the Active box.

Tip: In the Login Image section, you can upload an image file to be displayed as the login button on the login page in the FM Portal.

  1. Click Save in the toolbar

War dieser Artikel hilfreich?