Updating existing Azure AD to Infor CloudSuite federations
-
Log on to the Infor CloudSuite tenant portal with an administrator account with
Cloud Identities authentication.
-
Click an account name (person icon in the top right) to populate from the user
menu.
-
Select from the
options.
-
Click the
drop-down and select Federated
Security.
-
Expand Federated Security and click
the edit icon for the Azure federation.
-
Make notes of any Sign Authentication
request, Accept Encrypted
Assertions, Logoff,
Assertion Identity Key, and
IFS user lookup field
settings.
-
Select the WS-Trust tab. If enabled,
make note of the STS Name, SOAP Version, WS-Trust Version, Service Endpoint, and Client Authentication from the settings, and
confirm if the No Tokentype check box
is selected.
-
Select the Azure AD Active Mode tab.
If enabled, make note of the Azure AD token end
point, Client ID,
Scopes, and Look up value settings, and confirm if the
IFS user lookup field is
selected. The Client Secret value is
not viewable. See original notes on initial activation for the value used. If
that value is not available, then generate a new client secret in Azure AD for
the registered application with the same Client ID on the Azure AD Active Mode tab.
-
Click the back arrow beside Federated Security at the top of the page.
-
Access the Azure portal and open the Infor CloudSuite enterprise
application.
-
From the Application Home page, select from the menu.
-
Navigate to the SAML Signing Certificate section and click
the download link beside Federation Metadata
XML to download the Azure AD metadata file.
-
Navigate to the Infor CloudSuite portal and select the Azure federation check box. Click the delete
icon. Click Yes on the
Delete Items confirmation message.
-
See Downloading the Infor CloudSuite metadataand Adding Azure AD configuration to Infor CloudSuite to
re-create the federation within Infor CloudSuite using InforSTS and to download
the Infor CloudSuite metadata to be used by Azure AD. Review your notes on
federation settings as they may differ from what is outlined in those sections.
Ensure to maintain original federation settings.
-
Configure the Azure AD Active Mode
tab, if required, with the values saved previously.
-
Navigate to the Azure portal and the Infor CloudSuite enterprise
application.
-
Click Upload metadata file, select
the
ServiceProviderSAMLMetadata_MM_DD_YYYY.xml
file downloaded
in previous steps. Click Add.
-
Under Basic SAML Configuration,
click Save and close the
section.
-
Click No, I’ll test later on the
test single sign-on message. Federation updating is now complete.
-
After the federation has been updated using InforSTS, validate authentication
through Azure to the Infor CloudSuite portal.