Configuring and Delivering Salesforce as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider)

Similar documents
Configuring and Delivering ServiceNow as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider)

Configuring and Delivering Salesforce as a managed application to XenMobile Users with NetScaler as the SAML IDP (Identity Provider)

Configuring and Delivering Notate for Enterprise as a managed application to XenMobile Users

Configuring and Delivering AetherPal as a managed application to XenMobile ios Users for Mobile Support.

Azure MFA Integration with NetScaler

Your Adoption Kit for Citrix Workspace Standard

How to buy or cancel the XenDesktop Essentials Service

ShareFile Account Admin Guide

Citrix Tech Zone Citrix Product Documentation docs.citrix.com November 13, 2018

XenApp 7.x on Oracle Cloud Infrastructure

XenApp, XenDesktop and XenMobile Integration

White Paper Taking Windows Mobile on Any Device Taking Windows Mobile on Any Device

Integrating VMware Workspace ONE with Okta. VMware Workspace ONE

Citrix SD-WAN for Optimal Office 365 Connectivity and Performance

Deploying Virtual Apps and Desktops with Citrix Provisioning using Oracle Cloud Infrastructure

Welcome to your Citrix User Adoption Kit

INTEGRATING OKTA: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Oracle PeopleSoft 9.2 with NetScaler for Global Server Load Balancing

Slack Cloud App SSO. Configuration Guide. Product Release Document Revisions Published Date

Augmenting security and management of. Office 365 with Citrix XenMobile

Okta SAML Authentication with WatchGuard Access Portal. Integration Guide

Citrix ShareFile Share, store, sync, and secure data on any device, anywhere

Design and deliver cloud-based apps and data for flexible, on-demand IT

Welcome to your Citrix Endpoint Management (formerly XenMobile) User Adoption Kit

Installation Guide. Citrix License Server VPX v1.01

Salesforce Mobile App Security Guide

Citrix XenApp and XenDesktop 7.15 LTSR FIPS Sample Deployments

Comprehensive Citrix HDX visibility powered by NetScaler Management and Analytics System

OneLogin SAML Authentication with WatchGuard Access Portal. Integration Guide

Salesforce Mobile App Security Guide

Citrix ADC Web App Firewall Service

Citrix XenApp and XenDesktop 7.6 LTSR FIPS Sample Deployments

All about SAML End-to-end Tableau and OKTA integration

Enabling Single Sign-On Using Microsoft Azure Active Directory in Axon Data Governance 5.2

Cloud Secure Integration with ADFS. Deployment Guide

Configure Unsanctioned Device Access Control

User Management Tool

Your Adoption Kit for Citrix Workspace Premium

Mobilize with Enterprise Security and a Productive User Experience

A simple, cost-effective way to transition your workloads to the cloud

SAML 2.0 Single Sign On with Citrix NetScaler

DEPLOYMENT GUIDE Amazon EC2 Security Groups. Deployment Guide. Security Groups Amazon EC2.

DEPLOYMENT GUIDE XenApp, Avaya 1X Agent. Deployment Guide. Avaya 1X Agent R2 SP2. XenApp 6.0.

NetScaler Management and Analytics System service trial account checklist

Enabling Single Sign-On Using Okta in Axon Data Governance 5.4

Integrating PingFederate with Citrix NetScaler Unified Gateway as SAML IDP

About This Document 3. Overview 3. System Requirements 3. Installation & Setup 4

Citrix XenMobile and Windows 10

SAP NetWeaver Server with NetScaler for Load Balancing(SSL offload), Application Firewall and- Integrated Caching

Deployment Guide. Policy Engine (PE) Deployment Guide. A Technical Reference

Single Sign-On Administrator Guide

REVIEWERS GUIDE NOVEMBER 2017 REVIEWER S GUIDE FOR CLOUD-BASED VMWARE WORKSPACE ONE: MOBILE SINGLE SIGN-ON. VMware Workspace ONE

Self-Service Password Reset

Configuring Confluence

RECOMMENDED DEPLOYMENT PRACTICES. The F5 and Okta Solution for High Security SSO

Security Provider Integration SAML Single Sign-On

Single Sign-On Administrator Guide

Configuring Single Sign-on from the VMware Identity Manager Service to Marketo

PULSE CONNECT SECURE APPCONNECT

A comprehensive security solution for enhanced mobility and productivity

Juniper Networks SSL VPN Integration Guide

Integration Guide. PingFederate SAML Integration Guide (SP-Initiated Workflow)

Guide to Deploying NetScaler as an Active Directory Federation Services Proxy

RSA SecurID Access SAML Configuration for Datadog

Citrix Workspace app for HTML5

Webthority can provide single sign-on to web applications using one of the following authentication methods:

esignlive SAML Administrator's Guide Product Release: 6.5 Date: July 05, 2018 esignlive 8200 Decarie Blvd, Suite 300 Montreal, Quebec H4P 2P5

SafeNet Authentication Manager

Guide to Deploying VMware Workspace ONE. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1

Deployment Guide. ICA Proxy for Citrix Receiver. Access Gateway Enterprise Edition XenApp XenDesktop

Deployment Guide. ICA Proxy for Citrix Receiver with SMS Authentication. Access Gateway Enterprise Edition XenApp XenDesktop

Morningstar ByAllAccounts SAML Connectivity Guide

Yubico with Centrify for Mac - Deployment Guide

CONFIGURING BASIC MACOS MANAGEMENT: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Configuring Alfresco Cloud with ADFS 3.0

Security Provider Integration SAML Single Sign-On

Citrix Education Learning Journey

Maximize your investment in Microsoft Office 365 with Citrix Workspace

Security Provider Integration: SAML Single Sign-On

Integrating Microsoft Intune/ Enterprise Mobility Suite with NetScaler (LDAP+OTP Scenario)

Integration of the platform. Technical specifications

ComponentSpace SAML v2.0 Okta Integration Guide

Citrix SSO for ios. Page 1 18

Deployment Best Practices and Guidelines to Deliver Any App to Mobile Users

Centrify for Dropbox Deployment Guide

RSA SecurID Access SAML Configuration for Samanage

CONFIGURING AD FS AS A THIRD-PARTY IDP IN VMWARE IDENTITY MANAGER: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

Deploying NetScaler with Microsoft Exchange 2016

Mitel MiContact Center Enterprise WEB APPLICATIONS CONFIGURATION GUIDE. Release 9.2

Secure File Sharing and Real-Time Mobile Access to Business Data with Citrix ShareFile

Integrating AirWatch and VMware Identity Manager

Five9 Plus Adapter for Agent Desktop Toolkit

VMware Workspace ONE Quick Configuration Guide. VMware AirWatch 9.1

VMWARE HORIZON CLOUD WITH VMWARE IDENTITY MANAGER QUICK START GUIDE WHITE PAPER MARCH 2018

SSO Integration Overview

OVERVIEW... 3 WHAT'S NEW... 3 COMPATIBILITY WITH MDM PRODUCTS... 5 CONFIGURE AN MDM MANAGED VPN PROFILE FOR CITRIX SSO... 5

SafeNet Authentication Service

Add OKTA as an Identity Provider in EAA

Cloud Secure. Microsoft Office 365. Configuration Guide. Product Release Document Revisions Published Date

ShareFile Technical Presentation

Transcription:

Solution Guide ios Managed Configuration Configuring and Delivering Salesforce as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider) Solution Guide Citrix.com Solutions Guide Configuring and Delivering Salesforce as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider) 1

Introduction Organizations, large and small, leverage Salesforce.com. With the ever-growing Mobile Workspace access to all your CRM data, existing customizations, and breakthrough productivity tools can now be protected for access from anywhere. With the power of the XenMobile and Salesforce, you can now connect to customers in a whole new way, all from your mobile device. Purpose of this document This document is meant to guide administrators in configuring the below components; Salesforce.com for SAML Single Sign-On (SSO) Salesforce App Config via the XenMobile Console The uses case that will be addressed with in this document are; 1. Salesforce SAML authentication using username and password Citrix.com Solutions Guide Configuring and Delivering Salesforce as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider) 2

Configure Salesforce SAML 2.0 Setting for Single Sign-On Prerequisites 1. Salesforce.com tenant needs to have Custom Domains enabled (e.g. customerdomain.my.salesforce.com) 2. An Identity Provider that Supports SAML 2.0 SAML 2.0 SSO Configuration 1. Login to Salesforce.com as an administrator 2. From Setup, enter Single Sign-On Settings in the Quick Find box, then select Single Sign-On Settings, and click Edit. 3. Select SAML Enabled. You must enable SAML to view the SAML single sign-on settings. Click Save. 4. In SAML Single Sign-On Settings, click New. 5. Give this setting a Name for reference within your org. Salesforce inserts the corresponding API Name value. 6. Enter the Issuer. Often referred to as the entity ID for the identity provider and will be provided by your IDP. (e.g. https://saml.xenmobiledemo.com/saml/login) 7. Enter the custom domain for the Entity ID. You must share this information with your identity provider. Citrix.com Solutions Guide Configuring and Delivering Salesforce as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider) 3

8. For the Identity Provider Certificate, use the Choose File button to locate and upload the certificate provided by your Identity Provider. 9. For the Request Signing Certificate, select the certificate you want from the ones saved in your Certificate and Key Management settings. 10. For the Request Signature Method, select the hashing algorithm for encrypted requests, RSA-SHA256. 11. For the SAML Identity Type, select Assertion contains the User s Salesforce username. 12. For the SAML Identity Location, select Identity is in the NameIdentifier element of the Subject statement. 13. For the Service Provider Initiated Request Binding, select HTTP POST. 14. Enter the Identity Provider Login URL, as provided by your Identity Provider 15. Click Save. Common IDP Configuration guides available here; Okta SAML 2.0 Salesforce Configuration Azure AD SAML 2.0 Salesforce Configuration OneLogin SAML 2.0 Salesforce Configuration Centrify SAML 2.0 Salesforce Configuration Citrix.com Solutions Guide Configuring and Delivering Salesforce as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider) 4

ios Managed Configuration: Salesforce via the XenMobile Console Prerequisites 1. The Salesforce must be an MDM-managed application with in the XenMobile Server. Configure the Salesforce App Config Policy The App Configuration Policy with in the XenMobile server will assign the customers Salesforce environment as well as additional DLP settings. Use the following procedure: 1. In the XenMobile console navigate to Configure > Device Policies and click the Add button. 2. Select App Configuration, name your policy and click Next. 3. We will be only configuring ios, so you can uncheck any other OS options. 4. In the Identifier drop down select the Salesforce App ID (com.salesforce.chatter) and select it. 5. If you do not see it, select Add New, and enter the Salesforce App ID (com.salesforce.chatter) 6. In the Dictionary Content you will need to enter your desired application configurations. There are a number of Configuration options, see the sample below; a. For User Name and Password Based Authentication <dict> <key>requirecertauth</key><false></false> <key>clearclipboardonbackground</key><true></true> <key>appservicehosts</key><string>customerdomain.my.salesforce.com</string> <key>appservicehostlabels</key><string>customersalesforcelabel</string> <key>onlyshowauthorizedhosts</key><true></true> </dict> 7. Click Next. 8. Assign the policy to the desired Delivery Group and Click Save. Citrix.com Solutions Guide Configuring and Delivering Salesforce as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider) 5

Salesforce App Configuration Key Definitions Key Description Key-Value Pair RequireCertAuth AppServiceHosts If true, the certificate-based authentication flow initiates. ios: Redirects the user to Safari for all authentication requests. Login hosts. First value in the array is the default host. false customerdomain.my.salesforce.com AppServiceHostLabels Labels for the hosts CustomerSalesforceLabel OnlyShowAuthorizedHosts If true, prevents users from modifying the list of hosts that Salesforce can connect to. true ClearClipboardOnBackground If true, the contents of the ios clipboard are cleared when the mobile app is backgrounded. This prevents the user from accidentally copying and pasting sensitive data outside of the application. true https://resources.docs.salesforce.com/208/latest/en-us/sfdc/pdf/salesforce1_mobile_security.pdf App Tunnel (per-app VPN) o o With the ios per app-vpn feature, you can leverage the VPN profile in conjunction with the Citrix VPN app on a XenMobile-managed ios device. There, you can establish an on-demand VPN tunnel to the enterprise network for a desired set of applications installed on the device. Per App VPN with XenMobile and Citrix VPN Blog Conclusion With the power of the XenMobile and Salesforce, you can now connect to customers in a whole new way, all from your mobile device. Citrix.com Solutions Guide Configuring and Delivering Salesforce as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider) 6

About the Authors and Contributors Frank Srp is a Senior Technical Marketing Manager specialized on Mobility, Citrix. Sujit Narayanan is a Principal Product Manager, Citrix. A special thanks to the reviewers of this Solutions Brief: Matthew Brooks Amandeep Nagra Tarkan Kocoglu Enterprise Sales North America 800-424-8749 Worldwide +1 408-790-8000 Locations Corporate Headquarters 851 Cypress Creek Road Fort Lauderdale, FL 33309, United States Silicon Valley 4988 Great America Parkway Santa Clara, CA 95054, United States 2017 Citrix Systems, Inc. All rights reserved. Citrix, the Citrix logo, and other marks appearing herein are property of Citrix Systems, Inc. and/or one or more of its subsidiaries, and may be registered with the U.S. Patent and Trademark Office and in other countries. All other marks are the property of their respective owner(s). Citrix.com Solutions Guide Configuring and Delivering Salesforce as a managed application to XenMobile Users with 3 rd Party SAML IDP (Identity Provider) 7

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback