Domain Separation and SSO

wipeout630
Mega Expert

As an MSP, we have many customers using our domain separated instance.   One of our customers has requested that we implement SSO to make it easier for their users to login.   From what I understand, implementing SSO will remove all current LDAP authentication methods and SSO will be restricted to a single customer.   Is there a way to implement SSO for multiple domains?

1 ACCEPTED SOLUTION

Since we have upgraded to Eureka, we are now using the Multi-provider SSO module.


View solution in original post

3 REPLIES 3

solutioningnow
Giga Guru

Hi,



You can install Multi-SSO plugin using attached updated set. I have taken update set from Share Servicenow site.



This functionality is being added to the Platform in the Eureka release.



Please mark answer correct/helpful



Regards,


Solutioner


Since we have upgraded to Eureka, we are now using the Multi-provider SSO module.


yogesh15dd
Tera Guru

hi,

I have a MSP domain separated environment, i would like to implement SSO for one of the domain's, if you may please tell me, what all the things i have to take care of?

1) Would the steps for configuring SSO for  MSP (single domain), be same as that of configuring SSO for single client?, any changes we have to make or just configuring it in that domain will work?

2) I read somewhere that,

Though enabling SSO per domains could be a good solution, it would mean that you would have to manually monitor ServiceNow for any SSO updates in the SAML code base and manually merge updated Single Sign-on code with your own in the future to get any updates on the authentication mechanisms. I don't recommend it often, especially if the federation can take place on the Identity Provider side instead.

 

How about this?

 

Thanks in advance.

 

Yogish