[TEMPLATE] Jive 7.0.0.1 SSO configuration

Version 2

    General Info

     

    TypeValue
    Production URL
    Production JCA
    Link to production SP metadata
    Link to production IdP metadata
    Test URL
    Test JCA
    Link to test SP metadata
    Link to test IdP metadata

     

     

    System Properties

    - Admin Console > System > Management > System Properties

    Quick link: <JIVE_URL>/admin/system-properties.jsp

     

    Property NameProperty Value
    registration.domainRestriction.enabledtrue|false
    registration.domainRestriction.domains

     

    Single Sign-On Settings

    - Admin Console > People > Settings > Single Sign-On > SAML

    Quick link: <JIVE_URL>/admin/settings-saml.jspa

     

    User Attribute Mapping

     

    Profile NameAttribute NameFederated
    External Identifier override w/assertion attributeunchecked
    Username override w/assertion attributeunchecked
    Email

    mail

    checked
    First NamegivenNamechecked
    Last Namesnchecked

     

    General

     

    SettingValue
    SSO Service Bindingurn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST
    Username Identityunchecked
    Logout URL/sso/logged-out.jspa
    Sync user profile on loginunchecked
    Max. authentication age28800
    Response Skew120
    Sign Assertionschecked
    Request Signedunchecked
    Include Scopingunchecked
    Proxy Count2

     

    Advanced

     

    SettingValue
    Base metadata URL:
    Enable Username Confirmation for New Usersunchecked
    Enable Email Confirmation for New Usersunchecked
    Enable Name Confirmation for New Usersunchecked
    External Identity is Case-Sensitivechecked
    Force Authenticationunchecked
    Passive Authenticationunchecked
    NameID Format
    NameID Allow Createunchecked
    Sign Metadataunchecked
    admin.sso.wantResponseSignedunchecked
    Requested AuthnContext
    Requested AuthnContext Comparison
    RSA Signature Algorithm URIwww.w3.org/2001/04/xmldsig-more#rsa-sha256
    http://www.w3.org/2001/04/xmldsig-more#rsa-sha256
    Group Mapping Enabledunchecked
    Group Mapping Value, if Group Mapping Enabled is checked

     

    Login Entry Page Settings (if externally accessible groups is enabled)

    - Admin Console > People > Settings > Single Sign-On > Login Entry Page

     

    NameValue
    Page Title
    Page Overview Text
    SSO Login Title
    SSO Login Text
    Non-SSO Login Title
    Non-SSO Login Text

     

     

    Screenshots

     

    <screenshots of admin console sso config pages here>