问题描述
我没有安装访问控制服务(ACS),但我已经看到了一些在线视频演示了Salesforce的不在可用pre-安装身份提供的列表。销售人员可以配置成的IdP(标准SAML 2.0时)。我可以安装ACS,这样我可以使用Salesforce的身份提供者?谢谢
I have no Access Control Service (ACS) installed, but I've seen on some online video demo that Salesforce is not in the list of available pre-installed identity providers. Salesforce can be configured as IdP (standard SAML 2.0 is used). Can I setup ACS so that I can use Salesforce as identity provider? Thanks
推荐答案
我没有亲自使用SAML 2.0令牌供应商,但它的官方介绍说,ACS支持SAML 2.0令牌。支持的协议列表是的OAuth 2.0,WS-Trust和WS-联合会(经的)。
I haven't personally used a SAML 2.0 token provider, but it's official description says that ACS supports SAML 2.0 tokens. A list of supported protocols are OAuth 2.0, WS-Trust, and WS-Federation (as by official statement).
此外,当前没有自动化(与用户接口)的方式来增加身份提供者是出在ACS pdefined $ P $的。但是,您可以使用来手动添加具有支持的协议的IP。 <一href=\"http://blogs.msdn.com/b/vbertocci/archive/2011/05/19/adding-a-custom-openid-provider-to-acs-with-just-one-line-of-powershell-$c$c.aspx\"相对=nofollow>这里是一个维托里奥的博客显示了如何添加一个OpenID提供商。
Also, there is no currently automated (with user interface) way to add identity providers that are out of predefined in the ACS. You can however use the ACS cmdLets to manually add IPs that have a supported protocol. Here is a Vittorio's blog that shows how to add an openID provider.
如果您可以通过使用SAML 2.0令牌的配置SalesFores为的IdP,你只识别协议 - 是OAuth的是WS-联合会它WS-Trust和执行的PowerShell命令,它会看起来像这样的:
If you can configure the SalesFores as IdP with the use of SAML 2.0 tokens, you just to identify the protocol - is it OAuth, is it WS-Trust of WS-Federation, and execute a PowerShell command which would look something like this:
PS:\>Add-IdentityProvider –Namespace "myacsnamespace" –ManagementKey "XXXXXXXX" -Type "Manual" -Name "SalesForce" -Protocol OAuth –SignInAddress "http://www.your_salesforce_site.com/sign-in-url"
该命令所支持的协议列表是:WsFederation,OAuth的,的OpenID,WsTrust。因此,SalesForce公司的IdP配置必须使用其中的一些协议,与SAML 2.0令牌,它必须工作。我认为这是OAuth的由这个维基。
希望这有助于!
这篇关于是否Azure的ACS支持SAML 2.0境内流离失所者像Salesforce的?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!