function readOnly(count){ }
Starting November 20, the site will be set to read-only. On December 4, 2023,
forum discussions will move to the Trailblazer Community.
+ Start a Discussion
Tim__mTim__m 

SSO - Using Salesforce as the IDP

There is lots of good information on developer.force.com about SSO and Salesforce as the service provider but I can't find any information on using Salesforce as the identity provider to another service. I would like to be able to use my salesforce user and contact objects as my identity store for an outside application. Can it be done? Do I have to role my own SAML SSO service within Salesforce to get the job done? What kind of license agreement issues would I have to deal with?

 

Any thoughts?

CarlInAustinCarlInAustin

I am also searching for information about having Salesforce serve as the federated SAML Identity Provider for external web applications.  I would like to know if this is even an option so I can present it to my team at our upcoming planning meeting.

 

If I find anything, I'll post it back here.

 

 

KMeinholdKMeinhold

Hello Tim,

 

Ping Identity allows you to use Salesforce.com as the IdP for SAML secure Internet SSO.  I am happy to discuss this with you further, please give me a call at my direct line below.

 

Salesforce.com as IdP for SSO

 

See what Ping Identity Customers are saying about PingFederate!

 

Kyle Meinhold  |  Sales Associate
PingIdentity  |   www.pingidentity.com
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - 
O: 720.317.2083  
Email: kmeinhold@pingidentity.com
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

 

 

Connect with Ping
Twitter: @pingidentity
LinkedIn Group: Ping's Identity Cloud    
Facebook.com/pingidentitypage 

Connect with me
LinkedIn.com/in/kylemeinhold

RQuickRQuick

Tim,

 

Salesforce cannot currently generate Federation standards therefore cannot act as a sole IDP. You need a robust service that can authenticate your users, be your IDP, then give access to the all the applications, SP's like SFDC,  that users are accessing on a daily basis. myOneLogin offers Strong Authentication and access to both Federated and Non-Federated applications. Let me know if you have time early next week to discuss this further.

 

Thanks,

 

Rory

 

Rory J. Quick

Manager of Security Development

TriCipher, Inc.

750 University Ave. Suite 260

Los Gatos, CA  95032

Direct Line +1-650-376-8326

Cell + 1-408-472-9444

YAHOO rory.quick

Follow me on Twitter: myonelogin

Become a Fan on Facebook: myOneLogin

rory.quick@tricipher.com

www.myOneLogin.com

Joshua_FormanJoshua_Forman

The closest you can get to Salesforce being the IdP is to login to a Single Sign-On service with your Salesforce.com username and password, then get direct access to not only Salesforce.com, but many other SaaS applications without the need to enter more credentials. This is what's possible with Symplified's Cloud Access Management product using Identity Vault http://www.symplified.com/main/what-we-do-for-you/products/provisioning/synchronize-identities.html. Please contact info@symplified.com if you'd like to discuss further. Thanks.

kvinkvin

Hey Tim / Carlln,

 

Were you able to figure out a means to do this, please post your comments. Greatly appreciate you time.

 

Thank you.

CarlInAustinCarlInAustin

hey kvin-

 

My understanding from Chuck is that IdP support is in beta -- it may be included in the winter release.

 

regards...

swestenzweigswestenzweig

Can anyone confirm SFDC's capabilities as an IdP? This appears to have been implemented as part of the current (Winter '11) release; however, much of the existing SFDC documentation relates to using an external IdP and setting up SFDC as an SP.

FranklynFranklyn

Echoing swestenzweig's query... is there support for Salesforce playing the role of identity provider?  If so, can you provide a link to the documentation?

 

Thanks

 

FranklynFranklyn

Never mind... found it.

KMeinholdKMeinhold

Hello Franklyn,

 

Here is a link to some documentation you may find helpful. I am happy to discuss further. 

 

SSO using Salesforce.com as the IDP

 

Best Regards,

 

Kyle Meinhold

Sales Associate

Ping Identity

720-317-2083

 

 

pragya123pragya123

I am trying to Implement salesforce as Identity provider and external website as service provider .

My requirement is to enable login to salesforce as well as private area of external website using salesforce credentials at external website and that credentials should validate against the database of salesforce using IDP feature of salesforce.

I have setup all the details inside the salesforce but not able to bring the login page to send request inside salesforce from external website to validate credentials.

Please help me regarding salesforce as Identity provider.

KMeinholdKMeinhold

Hello Pragya,

 

I am happy to discuss this with you further. If you would like I can be reached at 720-317-2083. 

 

Best Regards,

 

Kyle Meinhold

Sales Associate

Ping Identity

www.pingidentity.com

pragya123pragya123

Yaa I would like to dicuss this with you , please let me know when I can call you tommorow

 

KMeinholdKMeinhold

I am available 8:30am-5:30pm (MDT), Monday thru Friday. Please feel free to give me a call at your earliest convenience.

 

E-mail: kmeinhold@pingidentity.com

Office: 720-317-2083

Ken_TuiteleKen_Tuitele

Hi Tim -

 

Yes, Symplified can help you easily leverage Salesforce.com as an store.  I can provide you a more detailed explanation.  At what number can I contact you?  I can be reached at (303) 318-4165.  Cheers - Ken

Ken_TuiteleKen_Tuitele

Hi Pragya - Symplified can certainly help with this.   We have a unique appproach to helping companies like yours solve this problem.  At what number can I contact you to provide you more details?  I can be reached at 303.318.4165.  Cheers - Ken

certi_vimalcerti_vimal

Hi Franklyn,

 

Would you mind sharing the link with us too?

 

 

Thanks,

 

Vimal

NathanSNathanS

just curious: Where did you find this info?

AminYAminY
venkatabhuvivenkatabhuvi

Hi I have been following this discusssion board and searching for Salesforce as idp and pentaho Business intelligence with CAS as Service provider is possible?

 

I looked for different blogs but couldn't find the exactly whether this is feasible or not. I am basically trying to achieve if I login for salesforce then it shouldn't ask me for authentication when I go for Pentaho BI.

sf_guysf_guy

Was there any progress on this topic ?

sfdccrmsfdccrm

HI All...

 

Please can anyone provide me the step to defince SSO Circle as Identity provider and where as Salesforce as a service Provider....

 

Thanks.. in advance....