We are migrating to UMP in the near future and were curious if anyone is using single-sign-on to authenticate users against windows active directory?
Did you ever get a response to this? I am interested in learning if AD/LDAP integration exists too. I have not found anything on this yet. I would assume if it is possible, the configuration would be done in Infrastructure Manager somehow and UMP would inherit sign on users from IM.
Thanks for the bump... But unfortunately, we have not got any response from this. We have not implemented UMP yet and look forward to it.
I heard a little while ago that this was successfully setup by an SE for a customer using Nimsoft On Demand, but I have no details. I am fairly certain that support for this was added to the UMP in one of the more recent major versions, probably 2.0 or 2.1.
I will see if we can get the SE (Jim) to add any details to this thread...
We have AD/LDAP intergration working with the UMP - This worked in UMP 1.5 and now 2.5. We configured the LDAP integration on the hub. We did (at the time) have to change the WASP properties file to use email address as the user name rether than the default screen name
oh and the UMP 2.5 release notes state in the new and changed functionality section:
"Availability of Single-Sign on through a Nimsoft Partner"
We use Active Directory instead of the local Nimsoft user database. You setup the hub probe on the primary hub with your ldap configuration. Then I create Active Directory groups and add specific users to them and create ACL's in Nimsoft that match the AD group names and associate them together. I just installed UMP a few weeks ago for the first time but I am using that setup to login into UMP and it seems to be working fine. I haven't fully tested everything though.
Anyone have more info on this:
In the Nimsoft Unified Management Portal user Guide it points you to:
Single Sign On
UMP supports SAML (Security Assertion Markup Language) 2.0-compliant single sign-on. Single sign-on allows users, once logged into your systems, to access UMP without logging in again.
SAML is an XML-based open standard for exchanging authentication and authorization data between security domains, that is, between an identity provider (a producer of assertions) and a service provider (a consumer of assertions).* Support for SAML-based authentication is available in a Software-as-a-Service (SaaS) model from a third-party company, AssureBridge.
In order to use the AssureBridge SAML single sign-on solution for UMP, you must have an identity server with a public URL.
For more information or to obtain single sign-on, contact AssureBridge:
Well, thanks for the info, but a public facing identity server can't happen in our environment. I didn't realize it was a SaaS solutiion.
We also have ad working for UMP we have a local hub that talks to DC's then we use the proxy hub where ump is installed and works great.
Retrieving data ...