To configure Sharepoint in the Single Sign On Manager please follow these steps
- Select Directory Manager.
- Select Groups.
- Select the green plus sign in the bottom right corner.
Name the Group Sharepoint Users.
Note: If you have other existing Groups for SSO users you can use one of these as well. - Select ADD GROUP.
- Select SSO Manager.
- Select the green plus sign in the bottom right corner.
- Select the Catalog Icon.
- Select Custom Application from the Catalog.
- Select Application is Enabled.
- Name the Application Sharepoint.
- Select the Authentication Policy you want to use.
- Upload your an image for the Application icon.
You can use the icon attached to this article. - Select Protocol Setup.
Choose WS-Federation.
Reply To URL: https://sharepoint.yourcompany.com/_trust/
Audience URI : https://sharepoint.yourcompany.com/_trust/
Note: Replace "yourcompany" with your own Sharepoint domain.
Token Lifetime: 60 minutes.
- Select Advanced Settings.
Under Protocol version select WS 1.3
- Select Attribute transformation.
- Select Add Custom Attribute Map. Add the following attributes
Select Add Custom Attribute Map
Attribute Value: {Email}
Issue as Type: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
Select Add Mapping.
Select Add Custom Attribute Map
Attribute Value: {Role}
Issue as Type: http://schemas.microsoft.com/ws/2008/06/identity/claims/role
Select Add Mapping.
- Select Add Application.
- Select Permissions.
- Select Add Groups.
Select the Group you chose in Step 4. - Select Save Changes.