Human Capital Management Blogs by SAP
Get insider info on SAP SuccessFactors HCM suite for core HR and payroll, time and attendance, talent management, employee experience management, and more in this SAP blog.
cancel
Showing results for 
Search instead for 
Did you mean: 
yogananda
Product and Topic Expert
Product and Topic Expert
1,663

Dear Readers

You can set up a single sign-on (SSO) by configuring your Salesforce org as the SAML identity provider for service providers as SAP Commissions, so let's start to configure now...

Pre-requisites

    • SAP Commissions Tenant
    • Salesforce Account with Admin Role

At High-Level Flow

    • Login to your Salesforce account.
    • Go to Setup in the top-right section of the page.


Now in the left pane search, type Domain

    • Select My Domain.
    • Choose your domain name, check for availability and if available, proceed by clicking the Register Domain button

Let's enable SAML

    1. Navigate to Setup > Identity > Single Sign-On Settings.



To set up this SSO configuration, enable your org as an identity provider and integrate your service provider as a connected app

Go to App Manager

Create your own connected App to update your Service Provider as per the below table


SAML Service Provider Settings

 

Entity Id<tenantid>.callidusondemand.com
Subject TypeFederation ID
Idp CertificateDefault IdP Certificate
Name ID Formaturn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
Signing Algorithm for SAML MessagesSHA1
Verify Request Signatures 
Enable Single Logout Disabled
ACS URLhttps://<tenantid>.callidusondemand.com/CallidusPortal/startPortal.do?fssoLoginResponse=true
Issuerhttps://<sfdc domain name>.my.salesforce.com




Assign the profile to the new connected app

Let's download the Metadata file after our above steps are configured

 

Go to SAP Commissions - Global Settings to Configure SSO

Just follow the numerical order (steps as shown below)

Non-Trusted Mode =  Users can log in through IDP initiated and also Service Provider login.

Trusted Mode = Users can only log in through IDP initiated.


Let's configure Web Tab for Sales users to see their Dashboard & Reports

Go to Tabs and Click New

Let's test it now

Sales users will log in to Salesforce account and click on Web Tab for SAP Commissions which will take them through the Single Sign-on process without entering credentials without login screen.


thanks, for reading it till the end. 🙏


Hope you find that helpful! Let me know your thoughts on this in the comments section.
Don’t forget to share this article with your friends or colleagues.
Feel free to connect with me on any of the platforms below! 🚀

yoganandamuthaiah |Twitter | LinkedIn | GitHub

2 Comments