From Bright Pattern Documentation
Jump to: navigation, search
imported>Sergem
 
(Updated via BpDeleteTranslateTags script)
 
Line 1: Line 1:
<translate>= Enable Single Sign-On in Salesforce Lightning = <!--T:1-->
+
= Enable Single Sign-On in Salesforce Lightning =  
 
Single Sign-on (SSO) functionality allows call center users to log in to Salesforce and Bright Pattern Contact Center applications simultaneously from a single login.  
 
Single Sign-on (SSO) functionality allows call center users to log in to Salesforce and Bright Pattern Contact Center applications simultaneously from a single login.  
  
== Step 1: Register and deploy organizational domain to users == <!--T:2-->
+
== Step 1: Register and deploy organizational domain to users ==  
 
# In Salesforce Lightning Setup, go to ''Settings > Company Settings > My Domain'' to register a new organizational domain (if you don't already have one).<br /><br />
 
# In Salesforce Lightning Setup, go to ''Settings > Company Settings > My Domain'' to register a new organizational domain (if you don't already have one).<br /><br />
 
# Click '''Configure a Domain Name'''.<br /><br />
 
# Click '''Configure a Domain Name'''.<br /><br />
Line 9: Line 9:
 
# All users must log in using this domain URL, which should be in the following format:<br /><br />'''https://<your-domain-name>.my.salesforce.com/'''
 
# All users must log in using this domain URL, which should be in the following format:<br /><br />'''https://<your-domain-name>.my.salesforce.com/'''
  
== Step 2: Enable identity provider == <!--T:3-->
+
== Step 2: Enable identity provider ==  
 
After your domain name is registered, you will be able to enable your identity provider, which is necessary for SSO. Once you complete this step, you will not have to do it again.
 
After your domain name is registered, you will be able to enable your identity provider, which is necessary for SSO. Once you complete this step, you will not have to do it again.
  
<!--T:4-->
 
 
Use Quick Find to go to the ''Identity Provider'' page and click on '''Enable Identity Provider'''.<br><br>[[File:Enable-Identity-Provider-54.PNG|800px|thumb|center|Click to enable the identity provider]]
 
Use Quick Find to go to the ''Identity Provider'' page and click on '''Enable Identity Provider'''.<br><br>[[File:Enable-Identity-Provider-54.PNG|800px|thumb|center|Click to enable the identity provider]]
  
== Step 3: Get the certificate == <!--T:5-->
+
== Step 3: Get the certificate ==  
 
The certificate is used in the [[Sfdc-integration-guide/Lightning/IntegrationAccount |  Add Salesforce Integration Account]] section of this guide to establish Salesforce as the identity provider for single sign-on.
 
The certificate is used in the [[Sfdc-integration-guide/Lightning/IntegrationAccount |  Add Salesforce Integration Account]] section of this guide to establish Salesforce as the identity provider for single sign-on.
  
<!--T:6-->
 
 
# In ''Identity Provider Setup'', select the actual certificate to be used. If no certificates are shown, you should either create a new self-signed certificate or import a certificate from your setup.<br><br>[[File:SFDC-Lightning-Identity-2-50.png|650px|thumbnail|center|Select the certificate]]<br><br>
 
# In ''Identity Provider Setup'', select the actual certificate to be used. If no certificates are shown, you should either create a new self-signed certificate or import a certificate from your setup.<br><br>[[File:SFDC-Lightning-Identity-2-50.png|650px|thumbnail|center|Select the certificate]]<br><br>
 
# Use the '''download certificate''' button if the certificate was previously downloaded.<br><br>[[File:SFDC-Lightning-Identity3-50.png|800px|thumbnail|center|You may need to click "Download Certificate"]]
 
# Use the '''download certificate''' button if the certificate was previously downloaded.<br><br>[[File:SFDC-Lightning-Identity3-50.png|800px|thumbnail|center|You may need to click "Download Certificate"]]
  
== Step 4: Customize your connected app == <!--T:7-->
+
== Step 4: Customize your connected app ==  
 
# Go to your Connected App Detail page and select '''BrightPattern''' from the list of connected apps.<br /><br />[[File:SFDC-Manage-Connected-54.PNG|800px|thumbnail|center|Connected Apps]]<br /><br />
 
# Go to your Connected App Detail page and select '''BrightPattern''' from the list of connected apps.<br /><br />[[File:SFDC-Manage-Connected-54.PNG|800px|thumbnail|center|Connected Apps]]<br /><br />
 
# On the ''Connected App Detail'' page that opens, click '''Edit Policies''' (at the top).<br /><br />
 
# On the ''Connected App Detail'' page that opens, click '''Edit Policies''' (at the top).<br /><br />
Line 31: Line 29:
 
# Click '''Save'''.
 
# Click '''Save'''.
  
== Step 5: Configure user profiles and field mapping (login mapping – custom attribute) == <!--T:8-->
+
== Step 5: Configure user profiles and field mapping (login mapping – custom attribute) ==  
 
SSO requires user profiles assigned for users that are going to utilize Bright Pattern Contact Center to be authenticated by the Salesforce Identity Provider. The following process maps the SSO parameters to the Bright Pattern Contact Center login ID.
 
SSO requires user profiles assigned for users that are going to utilize Bright Pattern Contact Center to be authenticated by the Salesforce Identity Provider. The following process maps the SSO parameters to the Bright Pattern Contact Center login ID.
  
<!--T:9-->
 
 
# Go back to ''Administer > Manage Apps > Connected Apps'', and select '''BrightPattern''' to get to the Connected App Detail page.<br /><br />
 
# Go back to ''Administer > Manage Apps > Connected Apps'', and select '''BrightPattern''' to get to the Connected App Detail page.<br /><br />
 
# Scroll all the way down to ''Custom Attributes'' and click '''Edit'''.<br /><br />[[File:SFDC-Custom-Attributes-50.png|800px|thumbnail|center|Edit custom attributes]]<br /><br />
 
# Scroll all the way down to ''Custom Attributes'' and click '''Edit'''.<br /><br />[[File:SFDC-Custom-Attributes-50.png|800px|thumbnail|center|Edit custom attributes]]<br /><br />
Line 41: Line 38:
 
## '''Attribute value''' - '''$User.CommunityNickname'''<br /><br />[[File:sfdc-integration-guide-image9.png|thumb|650px|center|]]<br /><br />
 
## '''Attribute value''' - '''$User.CommunityNickname'''<br /><br />[[File:sfdc-integration-guide-image9.png|thumb|650px|center|]]<br /><br />
  
<!--T:10-->
 
 
Bright Pattern Contact Center uses one optional custom service provider “Attribute key”: ''CSIMLoginID''. This Attribute could be matched with any user’s field. By default, it is configured to match the Salesforce user nickname ''($User.CommunityNickname)''.
 
Bright Pattern Contact Center uses one optional custom service provider “Attribute key”: ''CSIMLoginID''. This Attribute could be matched with any user’s field. By default, it is configured to match the Salesforce user nickname ''($User.CommunityNickname)''.
  
<!--T:11-->
 
 
'''Note:''' If this attribute mapping is removed and no other attribute is specified, then the login ID will be taken as part of the Salesforce username before the "@" sign.
 
'''Note:''' If this attribute mapping is removed and no other attribute is specified, then the login ID will be taken as part of the Salesforce username before the "@" sign.
  
== Step 6: Get the identity provider initiated login URL == <!--T:12-->
+
== Step 6: Get the identity provider initiated login URL ==  
 
# Still on the '''BrightPattern''' Connected App Detail page, see section ''SAML Login Information''.<br /><br />
 
# Still on the '''BrightPattern''' Connected App Detail page, see section ''SAML Login Information''.<br /><br />
 
# Copy the full URL from the '''Idp-initiated Login URL'''.<br /><br />[[File:SFDC-SAML-Login-50.PNG|thumb|800px|center|]]<br /><br />
 
# Copy the full URL from the '''Idp-initiated Login URL'''.<br /><br />[[File:SFDC-SAML-Login-50.PNG|thumb|800px|center|]]<br /><br />
 
# Save this URL for when you add the Salesforce integration account in the Bright Pattern Contact Center Administrator application. This URL will go in the "Identity provider initiated login URL" property.<br /><br />
 
# Save this URL for when you add the Salesforce integration account in the Bright Pattern Contact Center Administrator application. This URL will go in the "Identity provider initiated login URL" property.<br /><br />
  
== Step 7: Set up SSO integration with Bright Pattern Contact Center == <!--T:13-->
+
== Step 7: Set up SSO integration with Bright Pattern Contact Center ==  
SSO integration configuration is completed when you paste the certificate and Idp-initiated Login URL into [[Sfdc-integration-guide/Lightning/IntegrationAccount |  Salesforce integration account properties]] in Bright Pattern's Contact Center Administrator application.  
+
SSO integration configuration is completed when you paste the certificate and Idp-initiated Login URL into [[Sfdc-integration-guide/Lightning/IntegrationAccount |  Salesforce integration account properties]] in Bright Pattern's Contact Center Administrator application.
 
 
 
 
 
 
 
 
 
 
 
 
</translate>
 

Latest revision as of 04:10, 29 May 2024

• 日本語
• 5.19 • 5.3 • 5.8

Enable Single Sign-On in Salesforce Lightning

Single Sign-on (SSO) functionality allows call center users to log in to Salesforce and Bright Pattern Contact Center applications simultaneously from a single login.

Step 1: Register and deploy organizational domain to users

  1. In Salesforce Lightning Setup, go to Settings > Company Settings > My Domain to register a new organizational domain (if you don't already have one).

  2. Click Configure a Domain Name.

  3. Enter your desired domain name, such as your company name, and check for availability. When the name is shown to be available, you may register it. The registration process will take a few minutes; you will receive an email when your domain is registered and ready for testing. For more information on registration, refer to Salesforce Help.

    Register your domain


  4. Log in to the domain to test it, and then click Deploy to users.

  5. All users must log in using this domain URL, which should be in the following format:

    https://<your-domain-name>.my.salesforce.com/

Step 2: Enable identity provider

After your domain name is registered, you will be able to enable your identity provider, which is necessary for SSO. Once you complete this step, you will not have to do it again.

Use Quick Find to go to the Identity Provider page and click on Enable Identity Provider.

Click to enable the identity provider

Step 3: Get the certificate

The certificate is used in the Add Salesforce Integration Account section of this guide to establish Salesforce as the identity provider for single sign-on.

  1. In Identity Provider Setup, select the actual certificate to be used. If no certificates are shown, you should either create a new self-signed certificate or import a certificate from your setup.

    Select the certificate


  2. Use the download certificate button if the certificate was previously downloaded.

    You may need to click "Download Certificate"

Step 4: Customize your connected app

  1. Go to your Connected App Detail page and select BrightPattern from the list of connected apps.

    Connected Apps


  2. On the Connected App Detail page that opens, click Edit Policies (at the top).

  3. Set the following app settings:

    1. IP Relaxation - Relax IP restrictions

    2. Refresh Token Policy - Refresh token i s valid until revoked

    3. ACS URL - The URL should take the following form, where "<your-tenant>" is your contact center name: https://<your-tenant>.brightpattern.com/agentdesktop/agentdesktop/sfsso/response

      Settings to edit


  4. Click Save.

Step 5: Configure user profiles and field mapping (login mapping – custom attribute)

SSO requires user profiles assigned for users that are going to utilize Bright Pattern Contact Center to be authenticated by the Salesforce Identity Provider. The following process maps the SSO parameters to the Bright Pattern Contact Center login ID.

  1. Go back to Administer > Manage Apps > Connected Apps, and select BrightPattern to get to the Connected App Detail page.

  2. Scroll all the way down to Custom Attributes and click Edit.

    Edit custom attributes


  3. In the Update Custom Attribute page that opens, set the following:

    1. Attribute key - CSIMLoginID

    2. Attribute value - $User.CommunityNickname

      Sfdc-integration-guide-image9.png


Bright Pattern Contact Center uses one optional custom service provider “Attribute key”: CSIMLoginID. This Attribute could be matched with any user’s field. By default, it is configured to match the Salesforce user nickname ($User.CommunityNickname).

Note: If this attribute mapping is removed and no other attribute is specified, then the login ID will be taken as part of the Salesforce username before the "@" sign.

Step 6: Get the identity provider initiated login URL

  1. Still on the BrightPattern Connected App Detail page, see section SAML Login Information.

  2. Copy the full URL from the Idp-initiated Login URL.

    SFDC-SAML-Login-50.PNG


  3. Save this URL for when you add the Salesforce integration account in the Bright Pattern Contact Center Administrator application. This URL will go in the "Identity provider initiated login URL" property.

Step 7: Set up SSO integration with Bright Pattern Contact Center

SSO integration configuration is completed when you paste the certificate and Idp-initiated Login URL into Salesforce integration account properties in Bright Pattern's Contact Center Administrator application.

< Previous | Next >
Retrieved from "https://help.brightpattern.com/index.php?title=5.3:Sfdc-integration-guide/Lightning/EnablingSingleSign-On&oldid=149883"