ADSelfService Plus supports Active Directory (AD)-based single sign-on (SSO) for WorkPlace and many other SAML-enabled applications. If SSO is enabled for WorkPlace, users only have to login once into ADSelfService Plus - the identity provider. After logging in, users can securely access their WorkPlace account without having to enter their username and password again.
Service Provider (SP)-initiated SSO is supported by ADSelfService Plus for WorkPlace.
SP-initiated SSO for WorkPlace: When users access WorkPlace via a URL or bookmark, they are routed to the login page of ADSelfService Plus. After they log in, they will be redirected and logged into WorkPlace automatically.
Download and install ADSelfService Plus if you haven’t already.
ADSelfService Plus utilises the existing AD domain credentials for authenticating users during SSO. This makes the configuration of AD domains in ADSelfService Plus necessary before enabling SSO for WorkPlace.
By default, ADSelfService Plus will try to add all the domains that it can discover in the network. If the required domains are automatically added, skip to step 9; otherwise, follow the steps 1-8 to add the domains manually.
Getting the SSO/SAML Details from ADSelfService Plus
Configuring SSO settings in WorkPlace
Adding WorkPlace in ADSelfService Plus and enabling SSO
Note: ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration > Self-Service > Policy Configuration > Add New Policy. Click Select OUs/Groups, and make the selection based on your requirements. You need to select at least one self-service feature.
That’s it! Now users can log into their WorkPlace accounts automatically using single sign-on.
Free Active Directory users from attending lengthy help desk calls by allowing them to self-service their password resets/ account unlock tasks. Hassle-free password change for Active Directory users with ADSelfService Plus ‘Change Password’ console.
Get seamless one-click access to 100+ cloud applications. With enterprise single sign-on, users can access all their cloud applications with their Active Directory credentials. Thanks to ADSelfService Plus!
Intimate Active Directory users of their impending password/account expiry by mailing them these password/account expiry notifications.
Synchronize Windows Active Directory user password/account changes across multiple systems, automatically, including Office 365, G Suite, IBM iSeries and more.
Ensure strong user passwords that resist various hacking threats with ADSelfService Plus by enforcing Active Directory users to adhere to compliant passwords via displaying password complexity requirements.