Skip Navigation
Expand
Considerations when Implementing Customer Portal Single Sign On
Answer ID 9990   |   Last Review Date 02/13/2020

What do I need to consider when implementing Customer Portal Single Sign On (SSO)?

Environment:

Customer Portal Single Sign On

Resolution:

Customer Portal SSO only supports identity provider (IDP) initiated SSO.

The following topics should be taken into consideration when setting up the identity provider.

  • Entity ID can be any unique value in the IDP.
  • Format of assertion consumer service (ACS) url is https://<vhost>/ci/openlogin/saml/subject/<parameter>
  • Parameters that can be used are
    • contact.emails.address
    • contact.login
    • contact.id
    • contact.customfields.[customfield-name]
  • If a redirect is needed after the assertion is validated, append /redirect/<page> to the ACS url.
    • For example, https://<vhost>/ci/openlogin/saml/contact.login/redirect/app/ask

Once the identity provider has been implemented, there are a few mandatory requirements that must be performed in Oracle Service Cloud as well as the signing certificate must be validated. For more information, refer to the following answers.

Mandatory requirements for all SSO implementations

Validating and reviewing the properties of the signing certifcate for SSO

Available Languages for this Answer:

Notify Me
The page will refresh upon submission. Any pending input will be lost.