Setup a Single Sign-On Feature for Salesforce Users📱

 

The Salesforce Single sign-on feature can enable lots of features. For example, to spend less time to manage your login passwords, users can send out any reports and records link to others can easily access with a single click and manage all the sensitive information from one place.

 

Salesforce Single Sign-on SSO is configured with a Third-party identity provider that another name is called Inbound SSO. Now we are using the third-party identity provider “Axion Heroku web app”

 

By reading this article, you will learn about how to set up a single sign-on feature in Salesforce.

 

 

Launch Trailhead playground or Developer Edition.

 

 

Click the gear icon and then click Setup.

 

 

 

You must create a new user in your salesforce playground. Refer to my previous article to create a new user in Salesforce.

 

Search for “Users” in the search box and then click “Users” from search suggestions.

 

 

 

I am using a current login user. If you created a new user, follow these steps.

 

Click “Edit” near your user name.

 

 

 

In the user details page, scroll down Enter your unique Federation id in that field under the single sign-on section and then click the save button.

 

Example: [email protected]

 

 

 

Next, click the link to download the Identity provider certificate from Third-party providers.

 

http://axiomsso.herokuapp.com. Copy and paste URLs in another browser.

 

 

After accessing that page, click the “SAML Identity Provider and Tester”.

 

 

Under the “Configure” section click the “Download the Identity Provider Certificate” link to download that certificate and store it on your computer.

 

 

 

After downloading, come to the Salesforce playground page. Search “Single” in the quick find search box and then click “Single Sign-on settings” from suggestions.

 

 

In a single sign-on page, click the “Edit” button to enable the SSO settings in Salesforce.

 

 

 

Enable the SAML checkbox and then click the “Save” button.

 

 

 

After saving, click the “New” button to create an SSO.

 

 

 

Give the name and issuer URL

 

 

 

 

Upload the digital certificate file. It's downloaded from a third party provider.

 

 

 

Select the Signing certificate, request signature method, assertion decryption certificate, SAML identity type, SAML identity location, request binding and entity ID, copy your sub-domain name as entity id. Click the save button.

 

 

 

Our entity ID is created. Hold that page in your browser.

 

 

 

Again, go to the Third-party identity provider web page. Click the “SAML identity provider and tester” link.

 

 

Click the “generate a SAML Response” link under the “Generate” section.

 

 

Enter the Federation ID and Issuer URL in that field.

 

Federation ID: [email protected]

Issuer URL: http://axiomsso.herokuapp.com

 

 

 

Go to the Salesforce single sign-on page, Copy the entity ID.

 

 

Paste that copied Entity Id in the Entity field.

 

 

 

Again, go to Salesforce single sign-on page, copy that page URL from your browser’s URL box.

 

 

 

Come back to the Third party web page and paste the URL in the “Recipient URL” box.

 

 

 

If all processes are completed, click the “Request SAML Response” button.

 

 

 

Finally, our single sign-on response is getting from a third-party authenticator Successfully, and then clicking the Login button to use the Single sign-on feature.