Question
Accenture
PH
Last activity: 16 Oct 2018 12:03 EDT
How to implement 'Single Sign On' in PRPC 7.2.2 PEGA Personal Edition?
We will be implementing SSO concept to our project and I will try it in my Personal Edition. Do you easy have any reference on this?
***Moderator Edit: Vidyaranjan | Updated Categories***
**Moderation Team has archived post**
This post has been archived for educational purposes. Contents and links will no longer be updated. If you have the same/similar question, please write a new post.
OCBC Bank
SG
Hi,
I am not sure whether you can use SSO in PE or not. In case if you are looking for steps to configure SSO, please refer to below PDN article
https://docs-previous.pega.com/web-single-sign-sso-saml-20
Hope this helps.
Pegasystems Inc.
IN
You need to have SSO provider to authenticate. In real time scenario there is other application(siteminder) who does the authentication and pass on as cookies or HTTP header to pega. But for your practice it might be tough to get one.
But for practice you can try to authenticate based on the url. Where you pass the username and password in the url and try to decode the url and establish operator.
I think CLSA course is having one session on it.
-Saikat
l & t infotech
IN
Hi ,
You can implement SSO using PE. Use OpenAm(ForgeRock Identity Management) to configure you AD. Download the ZIP file from internet and deploy in your tomcat to access the OpenAM.
Virtusa IT Consulting
AE
Hi,
You can use waffle SSO for demo purpose, it will be container level SSO and very easy to implement. I have document as well for waffle SSO if you want I can share with you.
Pegasystems Inc.
IN
Hi Shoaib Ahmed,
I don't have any documentation on it, but I can give brief steps for configuring it.
1. Download the OpenAM-13.0.0 file from ForgeRock
2. deploy the WAR file in PRPC.
3. Create COT, Identity providers and service provider instances and then create Subjects(Users)
4. In the COT level or IDP level do the mapping.
5. Import the IDP metadata
6. In PRPC create a Authentication service and in the mapping tab do the mapping of IDP attributes with PRPC attributs.
7. Save it and access prpc with sso url.
8. Provide the credentials of any subject(operator) of IDP, request goes to IDP and authenticate and redirect to the PRPC(If operator is not there in the PRPC then based on the auth service tab mappings it will create operator using Model Operator of the passed values)
Thanks & Regards
Saran Kolla
Comptech Associates
US
Hi Saran
Can you please help on Create COT, Identity providers and service provider instances and then create Subjects(Users) after deploying.
Thanks
Sailaja
Virtusa IT Consulting
AE
Just to understand the actual requirement here,
Do you want to implement IDP managed SSO like with ForgeRock OpenAM or container managed SSO like SPNEGO or Waffle SSO?
Tetco
SA
Hi,
I don't have any specific requirement for my project i want to understand how SSO implementation can be done in PRPC 7.2, so that i am aware of that.
Virtusa IT Consulting
AE
Hi,
Please understand the different types of authentication mechanisms available in Pega, two of them are 'PRCustom' and 'J2EEContext' container based authentication. SSO can be achieved under both authentication implementations using SAML SSO or Container based SSO supported by additional softwares like SPNEGO and Waffle SSO.
You can start with Authentication service wizard in 'org & security' landing page, you will have two options for PRCustom type of authentication 'WebLDAP' or 'SAML SSO'