Set Back Office SSO Configuration using sso-tools - ABO - Reference Guides

Back Office Configuration Guide

Product
ABO
AFS_Version
7.11
Category
Reference Guides
language
English
audience
public

To configure SSO for the Back Office using the sso-tools:

Run the following command:

/usr/local/afs7/bin/sso-tools --product bo --url ${Back Office url}

Answer the following questions to define your configuration:

  • Name of the realm: enter the name of the realm such as previously defined.
  • Entity of the product:
  • Keystore location: enter the FULL path of the previously generated SP keystore (directory + filename).

    For example: /usr/local/afs7/Fluid-Topics/conf/${service_number}/${service_status}/saml/keystore.jks

  • Keystore password: enter the ${keystorePassword} used to authenticate the previously generated SP public keystore.
  • Private Key password: enter the ${privateKeyPassword} used to authenticate the previously generated SP private key.
  • IdP metadata file location: enter the FULL path of the IdP metadata file.

With the provided information, the sso-tools will generate a metadata file that must be used to configure the IdP.