Adding ADFS configuration to Infor CloudSuite
- Log on to the Infor CloudSuite tenant portal with an administrator account.
- Click an account name (person icon in the top right) to populate the user menu.
- Select User Management from the User Menu options.
- Click the Security Administration drop-down and select Federated Security.
- Expand Federated Security and click the plus (+) icon to add a federated connection.
- Select the SAML 2.0 Enabled option.
- Select the Authenticate with InforSTS option.
- Specify ADFS in the Display Name field.
-
In the Import SAML Metadata section, click From
File and select the ADFS metadata file previously downloaded.
Click Import. The Issuer, Identity Provider Certificate, Assertion Consumer Service, and Single Logoff Service parameters are populated from the
metadata file.
Enable Identity Provider Single Logoff is optional. When enabled, the application logs out from the identity provider.Sign Authentication request is optional. When enabled, the authentication requests sent to ADFS are signed during the SSO process.Accept Encrypted Assertions is optional. When enabled, encrypted SAML assertions issued by ADFS are processed.
- Leave Identity is a NameIdentifier element of the Subject statement as the default value for Assertion Identity Key.
- Leave Username as the IFS user lookup field.
- Click Save.
-
Optionally, select the JIT User Provisioning
Enabled check box. Supply these values:
Claim URL First Name claim http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname Last Name claim http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname Email Address claim http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress - Click Save.
- Click Service Provider Information > Views. Click the Export SAML Metadata link to download the metadata file required to configure ADFS.