LogoLogo
  • Welcome
  • Overview
    • Architecture
      • API Server
      • Sizing
    • Dashboard Overview
    • Monitoring Concepts
      • Application Performance Management
        • Availability Monitoring
        • Performance Intelligence
        • Service Level Management
        • Synthetic Transaction Management
        • Alerts Management
        • Reporting & Analytics
      • Infrastructure Monitoring
      • Unified Monitoring
    • Automation Concepts
      • Definition of Terms
      • Infrastructure as Code
        • Project Structure and Organization
        • Setting Up IaC Environment
        • Infrastructure Provisioning
        • Configuration Management
      • SAP Basis Automation
      • Automated Migration
  • User Guide
    • Onboarding
    • Setup
      • Gateway Setup
        • Gateway Network Setup
        • IT-Conductor Gateway Setup on Windows
        • IT-Conductor Gateway Setup on Linux
        • IT-Conductor Gateway Setup on AWS
        • IT-Conductor Gateway Setup on Azure
        • IT-Conductor Gateway Setup for SAP Secure Network Communications (SNC)
      • API Server Setup
      • MSP Tenant Setup
      • SSO Setup
        • Azure ADFS Identity Provider
        • Azure Active Directory (AAD) App Gallery
    • Monitoring
      • General
        • Maintenance Mode
          • Manual Maintenance
          • Scheduled Maintenance
        • Central Syslog Server Monitoring
        • URL Monitoring Locations
      • Cloud Monitoring
        • AWS Monitoring
        • Microsoft Azure Monitoring
      • Database Monitoring
        • IBM DB2 Database Monitoring
        • Microsoft SQL Server Monitoring
        • Oracle Database Monitoring
        • SAP HANA System Monitoring
          • SAP HANA Scale-Out Monitoring
          • SAP HANA Overview Dashboard
          • SAP HANA Alert Management
        • SAP ASE Database Monitoring
        • SAP MaxDB Monitoring
        • HA/DR Monitoring
      • Infrastructure Monitoring
        • File Server Monitoring
          • File Watcher Monitoring
        • Git Server
        • OS Monitoring
          • Unix/Linux System Monitoring
            • Linux Network Interface Monitoring
            • OS Printer Monitoring
          • Windows System Monitoring
            • WinRM Adapter Configuration
              • WinRM Services Configuration
              • Domain User Access
              • WMI Namespace Access
              • Windows Service Configuration
        • VMWare vCenter Monitoring
      • SAP Monitoring
        • Business Process Monitoring
          • Business Process Composer
          • BDoc Monitoring
          • IDoc Monitoring
        • SAP BusinessObjects Monitoring
          • SAP BO Data Services Monitoring
        • SAP Cloud Connector Monitoring
        • SAP Host Agent Monitoring
        • SAP NetWeaver Monitoring
          • SAP ABAP System Monitoring
            • SAP Transports
            • Security Role Import
            • SAP ABAP Overview Dashboard
            • SAP CCMS Alert Monitoring
            • SAP Batch Jobs Monitoring
              • SAP Batch Job Monitoring for CCMS Alerts
              • Advanced SAP Batch Job Monitoring
            • SAP SLT & RFC Connection Monitoring
            • Print Spooler Monitoring
            • Workload Monitoring
              • Transaction Code Monitoring
              • SAP Workload Monitoring
          • SAP J2EE System Monitoring
            • SAP J2EE Monitoring Role
            • Keystore Views and Certificates Monitoring
            • SAP PO Application Monitoring
          • SAP Systems Administrator Panel
        • SAP Web Dispatcher Monitoring
        • LMDB Discovery
        • Team-Based Central SAP Download Manager
    • Automation
      • Migration
        • Oracle to AWS Migration
        • Oracle to ASE Migration
        • SAP on MSSQL to AWS Migration
        • S/4HANA to Cloud Migration
      • E2E System Refresh Automation
        • Frequently Asked Questions
      • Age-based HANA Backup Automation
      • Inbound/Outbound Queue Restart Automation
      • OS File System Cleanup Automation
      • OS Linux Pacemaker Cluster Error Management
      • OS Printer Queue Restart Automation
      • OS Linux Kernel Patching using ChAI
      • OS Linux System Reboot using ChAI
      • SAP Batch Job Restart on Error
      • SAP Kernel Update using ChAI
      • SAP HANA Account Activation using ChAI
      • SAP Transports using ChAI
        • Frequently Asked Questions
      • SAP User Unlock and Password Reset Automation
      • Start/Stop Automation
    • Reporting
      • Available Reports
      • Creating Reports
        • Service Health KPI Report
      • Scheduling Reports
        • Automated HANA Reports
      • Report Elements
      • Archived Alerts Reporting
    • Account Administration
      • Invite Users
      • Create Robot Users
      • Update Linux System Account Password After Expiration
    • Notifications
      • Alerts
      • Threshold Overrides
        • Threshold Overrides Variables
      • Notification Targets
      • Distribution Lists
      • Subscriptions
      • Custom SMTP Notification Providers
      • Integration Providers
        • Derdack EA Integration
        • ilert Integration
        • Jira Service Desk Integration
        • Microsoft Teams Integration
        • PagerDuty Integration
        • Slack Integration
      • On-Call Scheduling
      • Calendar Events
    • Diagnostics
      • Gateway Communication Dump Debug Mode
      • Running IT-Conductor Gateway from CLI
      • SAP CCMS Missing Data
    • IT-Conductor FLUX
    • SID-Refresh
      • Product Overview
      • Getting Started
      • Documentation
      • Release Notes
      • Frequently Asked Questions
      • Troubleshooting Guide
        • Component CRM_MIDDLEWA_CRM - CRM Middleware Configuration
        • Failure to Start the Java-based GUI
        • Inconsistencies found in the table TADIR
        • Java-based GUI Runs with Pixelated Fonts
        • No email message is created after sending an email in SO01
        • Program Run as root
        • SICF Wrong Credentials
        • SU01: Error in user management
        • External Resources
      • Pricing
  • Release Notes
    • Gateway
  • References
    • Open-Source Software
    • Support
Powered by GitBook
On this page
  • Understanding SAML Configuration
  • Configure Identity Provider
  1. User Guide
  2. Setup

SSO Setup

PreviousMSP Tenant SetupNextAzure ADFS Identity Provider

Last updated 7 months ago

IT-Conductor supports SAML 2.0-based Single Sign-on.

Understanding SAML Configuration

In SAML terms, there are two parties:

  • Identity Provider that supplies the user authentication and is your trusted enterprise credentials - Okta, Microsoft ADFS (Azure or on-prem), Google Workspace, AWS IAM Identity Center, etc.

  • Service Provider - In this case, it is IT-Conductor that supports SSO with Identity Provider, so you don't need to maintain/remember a separate set of credentials.

Configure Identity Provider

To configure Identity Provider, you will need the following IT-Conductor SAML information:

  • Entity ID: https://service.itconductor.com

  • Assertion Consumer Service URL: https://service.itconductor.com/saml/acs

  • Relay State URL: https://service.itconductor.com/home

  • Logout URL: https://service.itconductor.com/saml/logout

Depending on what type of Identity Provider you are configuring, use the links below. Otherwise, use vendor instructions and the information above.

When the Identity Provider configuration is complete, either export Identity (Federation) Metadata XML and/or copy the following attributes:

  • Identity Provider Identifier

  • Login URL

  • Logout URL

  • Certificate (Base64)

  2. Navigate to Management → Security → SSO Identity Providers.

  1. Copy previously saved values to Identity Provider Info attributes as the following:

  • Name - Unique Name - internal to IT-Conductor

  • Description - Internally identifying information

  • Issuer - Identity Provider Identifier

  • SSO URL - Login URL

  • SLO URL - Logout URL

  • Certificate - exported base64 certificate

Service Provider Info attributes allow you to customize the mapping between Identity Provider and IT-Conductor, normally you don't need to do anything as default mappings should work. Otherwise, contact the IT-Conductor Support Team for assistance.

  2. Verify if the identity provider was added to the SSO Identity Providers actions panel.

You can now use the SSO to log into IT-Conductor from your Identity Provider.

Visit and enter your login credentials.

If you have previously exported Identity Metadata XML, click and import the file. This will create the new Identity Provide definition.

Alternatively, you can click to create a new Identity Provider definition.

Click again to insert the Identity Provider.

Configuring Azure ADFS
Configuring Octa
service.itconductor.com
Figure 1: SSO Identity Providers Actions Panel (Empty List)
Figure 2: Create SAML Identity Provider Wizard
Figure 3: SSO Identity Providers Actions Panel (Updated List)