3 thoughts on “Customer Portal: Single Sign-On

  1. In Rightnow the SSO for customers is called PTA (Pass-Through Authentication) and it is used when a customer logs in to the companies website and is automatically recognized by the customer portal. SSO with SAML is only for administrator, agents and staff in general applied only for the Rightnow Application.

    1. Hello Thales, That is not accurate. Although PTA & SAML are used for Single Sign On. PTA is very different from SAML. PTA is RightNow invented, whereas SAML is the industry standard. SAML can be used for both customer login as well as Agent login to the Admin console.

  2. I am using SAML for single signon. I had enable the config setting according to the documents.
    I have uploaded the saml certificate on file manager (certs/roots).

    On my php site Then I had used the SAML assertion xml. In SAML assertion xml I
    Changed two things.

    1.Certificate In XML

    MIICiDCCAXACCQDE+9eiWrm62jANBgkqhkiG9w0BAQQFADBFMQswCQYDVQQGEwJV
    zESMBAGA1UEChMJTkNTQS1URVNUMQ0wCwYDVQQLEwRVc2VyMRMwEQYDVQQDEwpTUC1TZXJ2aWNlMB4XDTA2MDcxNzIwMjE0MVoXDTA2MDcxODIwMjE0MVowSzELMAkG
    A1UEBhMCVVMxEjAQBgNVBAoTCU5DU0EtVEVTVDENMAsGA1UECxMEVXNlcjEZMBcG
    A1UEAwwQdHJzY2F2b0B1aXVjLmVkdTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkC
    gYEAv9QMe4lRl3XbWPcflbCjGK9gty6zBJmp+tsaJINM0VaBaZ3t+tSXknelYife
    nCc2O3yaX76aq53QMXy+5wKQYe8Rzdw28Nv3a73wfjXJXoUhGkvERcscs9EfIWcC
    g2bHOg8uSh+Fbv3lHih4lBJ5MCS2buJfsR7dlr/xsadU2RcCAwEAATANBgkqhkiG
    9w0BAQQFAAOCAQEAdyIcMTob7TVkelfJ7+I1j0LO24UlKvbLzd2OPvcFTCv6fVHx
    Ejk0QxaZXJhreZ6+rIdiMXrEzlRdJEsNMxtDW8++sVp6avoB5EX1y3ez+CEAIL4g
    cjvKZUR4dMryWshWIBHKFFul+r7urUgvWI12KbMeE9KP+kiiiiTskLcKgFzngw1J
    selmHhTcTCrcDocn5yO2+d3dog52vSOtVFDBsBuvDixO2hv679JR6Hlqjtk4GExp
    E9iVI0wdPE038uQIJJTXlhsMMLvUGVh/c0ReJBn92Vj4dI/yy6PtY/8ncYLYNkjg
    oVN0J/ymOktn9lTlFyTiuY4OuJsZRO1+zWLy9g==

    2.contact.login in XML

    Used Login value here

    Then covert the saml xml into Base64. And used this code for Assertion.

    But it give me errors.
    SAML_TOKEN_REQUIRED:14
    No SAMLResponse POST value was sent to the CP controller. A SAML response is required in order to start the authentication process.

    Can we do like this without using third party identity provider.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s