Human Capital Management Blogs by SAP
Get insider info on HCM solutions for core HR and payroll, time and attendance, talent management, employee experience management, and more in this SAP blog.
cancel
Showing results for 
Search instead for 
Did you mean: 
yogananda
Product and Topic Expert
Product and Topic Expert
Dear Readers

You can set up a single sign-on (SSO) by configuring your Salesforce org as the SAML identity provider for service providers as SAP Commissions, so let's start to configure now...



Pre-requisites



  • SAP Commissions Tenant

  • Salesforce Account with Admin Role


At High-Level Flow







  • Login to your Salesforce account.

  • Go to Setup in the top-right section of the page.



Now in the left pane search, type Domain

  • Select My Domain.

  • Choose your domain name, check for availability and if available, proceed by clicking the Register Domain button




Let's enable SAML



  1. Navigate to Setup > Identity > Single Sign-On Settings.




 

To set up this SSO configuration, enable your org as an identity provider and integrate your service provider as a connected app

Go to App Manager


Create your own connected App to update your Service Provider as per the below table

SAML Service Provider Settings










































Entity Id <tenantid>.callidusondemand.com
Subject Type Federation ID
Idp Certificate Default IdP Certificate
Name ID Format urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
Signing Algorithm for SAML Messages SHA1
Verify Request Signatures
Enable Single Logout  Disabled
ACS URL https://<tenantid>.callidusondemand.com/CallidusPortal/startPortal.do?fssoLoginResponse=true
Issuer https://<sfdc domain name>.my.salesforce.com



Assign the profile to the new connected app


Let's download the Metadata file after our above steps are configured


Go to SAP Commissions - Global Settings to Configure SSO


Just follow the numerical order (steps as shown below)

Non-Trusted Mode =  Users can log in through IDP initiated and also Service Provider login.

Trusted Mode = Users can only log in through IDP initiated.




Let's configure Web Tab for Sales users to see their Dashboard & Reports

Go to Tabs and Click New

Let's test it now


Sales users will log in to Salesforce account and click on Web Tab for SAP Commissions which will take them through the Single Sign-on process without entering credentials without login screen.


thanks, for reading it till the end. 🙏




Hope you find that helpful! Let me know your thoughts on this in the comments section.
Don’t forget to share this article with your friends or colleagues.
Feel free to connect with me on any of the platforms below! 🚀

yoganandamuthaiah |Twitter | LinkedIn | GitHub
2 Comments