Submit a ticketCall us

Webinar: Web Help Desk for HR, Facilities and Accounting Departments
This webinar will focus on use cases for HR, Facilities and Accounting.

Having a unified ticketing and asset management system for all the departments in your company can provide end-users with a seamless experience and make things easier for your IT team. Yet, with different business tasks and objectives, many departments don’t fully understand the capabilities of Web Help Desk and how the software can be customized for effective use in their departments.
Register Now.

Home > Success Center > Web Help Desk (WHD) > Configure Single Sign On for Web Help Desk using Active Directory Federation Services

Configure Single Sign On for Web Help Desk using Active Directory Federation Services

Table of contents

Updated March 11th, 2016

 

Overview

This article describes how to configure single sign on for WHD using Active Directory Federation Services (AD FS). 

Web Help Desk (WHD) 10.2.0.22 and later supports SAML 2.0, which allows Single Sign On (SSO) authentication. SSO in WHD uses Active Directory Federation Services (AD FS) to authenticate a user over multiple Web applications over the life of a single online session. When you configure SSO in WHD using AD FS, you can enable users, for example, who log in to the Microsoft Exchange server to be automatically logged in to WHD as well.

AD FS 1.0, which is the default on Windows Server 2008 R2, does not support SAML 2.0. If you are using Windows Server 2008 R2, you must upgrade to AD FS 2.0.

Environment

  • WHD 10.2.0.22 and later
  • SAML 2.0

Steps

  1. Enable automatic Active Directory (AD) logon through Windows by adding the AD FS logon URL to the Local Intranet sites within Internet options. This can also be done through a group policy for the whole organization.
    See About URL Security Zones (© 2017 Microsoft, available at https://msdn.microsoft.com/, obtained on February 17, 2017).
  2. Set up your SAML server with an identity repository, such as AD FS or Light Directory Access Protocol (LDAP), in the remote login URL for your SAML server.
  3. Enable SSL in your WHD installation using a trusted certificate (like GoDaddy™ or VeriSign®) or create your own certificate.
    For additional information, see Working with Keys and Certificates.

 

For additional information, see the following articles:

How to Export, Import and Upload the Token-Signing Certificate
WHD and AD FS Settings

 

Last modified
07:21, 19 May 2017

Tags

Classifications

Public