CA Service Management

Hi everyone,

Currently, I am working with Service Desk 17.1, and we have enabled SAML authentication.
Description in the link:
https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/business-management/ca-service-management/17-1/administering/administering-ca-service-desk-manager/enable-saml-authentication-for-ca-sdm.html#concept.dita_48ff64f1035697cb73079576efc2b95c021e6b11_EnableSAMLAuthenticationforCASDMonIIS

Characteristics in SDM:
the machine is in domain
ADFS feature was installed
ADFS configured with Relying Party Trust
SSL is installed and configured on port 90

We have already configured everything correctly and it works locally, but our Service desk is published on the internet and when we try to log in, the authentication factor looks for the local domain name

How can we configure the domain published on the internet?

local login


internet login


I attach the code from the web.config file

ADFS-Relying Party Trust Rules



I will be very grateful for your response.
Regards,
Marco Velazquez.

------------------------------
ITSM Consultant
Dayset
------------------------------

Hi Marco.
Some thoughts in general:
Both Services, SDM and your IDP must be accessible from the Internet.
That means, SDM needs a puclic available DNS Name, as well as the appropriate SSL certificate. Same is for your IDP.
SAML acts on top of SDM .The client, meaning the browser, needs to be able to access both services through the internet.
Hope that helps somehow.
Regards
....Michael

------------------------------
Principal Services Consultant
HCL Enterprise Studio
Germany
------------------------------

Original Message:
Sent: 07-06-2020 12:41 PM
From: Marco Antonio Velazquez Aldama
Subject: SAML Authentication for CA SDM

Hi everyone,

Currently, I am working with Service Desk 17.1, and we have enabled SAML authentication.
Description in the link:
https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/business-management/ca-service-management/17-1/administering/administering-ca-service-desk-manager/enable-saml-authentication-for-ca-sdm.html#concept.dita_48ff64f1035697cb73079576efc2b95c021e6b11_EnableSAMLAuthenticationforCASDMonIIS

Characteristics in SDM:
the machine is in domain
ADFS feature was installed
ADFS configured with Relying Party Trust
SSL is installed and configured on port 90

We have already configured everything correctly and it works locally, but our Service desk is published on the internet and when we try to log in, the authentication factor looks for the local domain name

How can we configure the domain published on the internet?

local login

internet login

I attach the code from the web.config file

ADFS-Relying Party Trust Rules

I will be very grateful for your response.
Regards,
Marco Velazquez.

------------------------------
ITSM Consultant
Dayset
------------------------------