Symantec Access Management

  • Private Community

  • 1.  SSO to Office 365

    Posted Jan 05, 2017 03:27 AM

    Hi I would like to check in the following scenario:

    We are using CA Single Sign-On. Now we want to integrate with Office 365.

    In Office 365 the domain contains student and alumni users, while my local AD only contains student users.

     

    If i want to enable federation SSO on office 365 domain, will this scenario work? If not do you have a suggestion or solutions for my current scenario? 

     

    Thank you.



  • 2.  Re: SSO to Office 365
    Best Answer

    Posted Jan 05, 2017 10:23 AM

    Office365 is the ServiceProvider or RP.

     

    CA SSO is the IdentityProvider or AP.

     

    In this case if there are no Alumni credentials in the onPremise IdentityStore which the onPremise CA SSO uses, how can we Authenticate? 

     

    I would say for Students use Federated SSO and for non Student i.e. Alumni use Cloud Identity - if there is way in Office 365 to ascertain based on credentials OR different logon URLs.

     

    The other alternative is to create the sync engine between Office 365 Cloud and onPremise IdentityStore. Once the Identities are synced then you can use a single logon and Federated access for all users.

     

    https://blogs.office.com/2014/05/13/choosing-a-sign-in-model-for-office-365/ 

     

     

    Regards

    Hubert



  • 3.  Re: SSO to Office 365

    Posted Jan 10, 2017 01:35 AM

    Thank you Hubert for answering my question.