Large businesses can enable Role based SSO(Single Sign On) for their users who are already authenticated by their intranet/website or email system or software such as CMS/ERP/CRM/PoS; SSO prevents duplication of effort to create and maintain open hundreds of username/password profiles for large businesses with many employees.
SSO works by building a information packet(JSON) with the authenticated user’s information and then encrypting the packet to obtain a SSO token that can be passed on to CloudCherry API for automatic login.
- Install Visual Studio.
- Clone this repo.
- Open the project in Visual Studio.
- Create a Active Directory application.
- Open Web.Config and replace the below values.
- ida:ClientId - Get Application id
- ida:TenantId - Get tenant id
- ida:Domain - Your Domain for Active Directory
- ssokey - SSO Key is configured in CloudCherry Insight Centre.
- ccaccount - You CloudCherry Account Name.
- Run the project.
API Tech whitepaper - Page 29 and Sample code is here.
On Successful Authentication from your AD, you will be presented with a Web Page. By clicking on Login to CloudCherry SSOToken will be created and you would be redirected to CloudCherry Insight Centre along with SSOToken and account name ("https://cx.getcloudcherry.com/#/login?sso=&ssotoken=").
You can find it here.
It's almost as similar as previous steps, this blog explains it much better.