How can I use a 3rd Party service (such as ADFS, Office365, or OneLogin) to SSO into UW?
The SAML Service Provider (SP) features allows another Identity Provider (IDP) to single sign-on into Unified Workspace using SAML for a seamless sign-on experience.
Please see the SAML Service Provider Documentation for information on enabling SAML SP inside of UW:
Please see the following Articles on how to configure the following 3rd Party IDPs:
Once you have UW configured for SAML SP, you will want to configure UW to force users to use your 3rd Party IDP login page.
Create a redirect file and place it in the webserv folder on your relays.
We've used the redirectSamlSP.zip file, attached to this article.
- Edit the redirectSamlSP.jsp and change the redirect URL to point to your IDP SAML login.
- Copy the file to your relay servers: c:\UnifiedWorkspace\webserv\custom\redirectSamlSP.jsp
- Create a Virtual Host entry on relay object's Options tab that redirects user to the redirectSamlSP.jsp
Such as: <YOUR_UW_URL>/custom/redirectSamlSP.jsp
Note: Adding the Virtual Host requires restarting UW.
Now when the user browses to <YOUR_UW_URL>, they are redirected to the login page you set in your redirect jsp.
It is also a good idea to set the the Redirect URL After Logout option, on the tenant, so that it redirects the user back to the SAML login page when the user logs out of UW.
- Expand Customization Center
- Expand Tenants
- Expand [Default] tenant object
- Select Global Settings
- Choose Redirect URL After Logout
- Change the value to the URL you go to, to log out of your IDP.
- For example: https://login.microsoftonline.com/common/wsfederation?wa=wsignout1.0
- Click Save
To prevent users from going directly to https://<YOUR_UA_URL>/LoginPolicy.jsp, rename c:\UnifiedWorkspace\webserv\LoginPolicy.jsp and c:\UnifiedWorkspace\webserv\NoLoginPolicy.jsp to something unique, that you can remember. This gives you an alternative login method if there is a problem with the IDP.
Old Browser Versions
Question: I am using an older browser version and am having problems. What can be done ? We are not able to upgrade the browser at this time. This is a challenge for any company that makes software that utilizes a browser. Since Stoneware does not ...
Problem: How to redirect the LCS in an environment with multiple LCSs and students connecting to them. Solution(s): Create an allow.cfg on all LCS(s) (including the Master) in the network, however, even if no allow.cfg is present on an LCS, machines ...
Time windows allows for Service Shutdown
Issue: Can the time windows gives a service to shut down before it kills the service be increased? Solution: Yes, the following information comes from the Microsoft URL : http://support.microsoft.com/kb/146092 To specify the wait time, do the ...
How to disable password saving - Internet Explorer
Having multiple methods for saving a password in the browser can cause confusion for the user. To disable password saving in Internet Explorer, launch Internet Explorer and perform the following steps. Click the blue Settings menu icon in the upper ...
How to disable password saving - Chrome
Having multiple methods for saving a password in the browser can cause confusion for the user. To disable password saving in Chrome, launch Chrome and perform the following steps. Click the Chrome menu button in the upper right corner of the Chrome ...