| Info |
|---|
This guide covers the configuration of a Relying Party Trust in AD FS and the corresponding configuration in ResourceXpress. It does not cover the installation or initial configuration of ADFS. |
...
On the Choose Access Control Policy page select the option Permit specific group then click the <parameter> option in the Policy window
...
Once you have configured AD FS for SSO you will need to download the IDP MetaData file for use in ResourceXpress. To obtain this file navigate to the below URL replacing <ADFS-ServerName> with the FQDN of your AD FS server.
https://<ADFS-ServerName>/FederationMetadata/2007-06/FederationMetadata.xml
Download the file to a suitable location.
...
Application Configuration
| Note |
|---|
Before configuring and saving the below configuration please ensure you have a valid local administrator account configured in ResourceXpress. It is important that this account has the same values for First Name, Last Name and Email ID matched to the respective LDAP attributes. Failure to have a locally configured administrator account before saving the SSO settings could result in you being locked out of the application. |
Log in to ResourceXpress with a local administrator account and navigate to Administration Settings - System Settings then select the SSO Settings tab
Click Choose file in the IDP Metadata field, browse to the file previously downloaded from AD FS then click Upload
The URL and Authenticating Authority fields will be auto-populated with the required values
Select the options to Auto create user records from SSO and Sync user details from SSO
Click Save
You have successfully configured SSO via AD FS for ResourceXpress. When a new user navigates to the application URL they will be prompted for their SSO credential, after successfully signing in a new local user account will be created with the User role assigned by default.
