C Emmons
asked on
Add O365 Email SSO to our Portal?
I've setup Federation with ADFS and have it working successfully authenticating O365. What our CIO wants is a button in our Portal that talks to ADFS and can allow email access without an additional login -- SSO. I'm not finding an article on this specifically. Can someone please assist. I see the Azure Metadata can be downloaded - but I'm not sure about the ADFS side of things.
Thanks.
Thanks.
You can use smart links for that - take a look at the article I just posted on the subject: http://blog.enowsoftware.com/solutions-engine/using-smart-links-to-improve-the-login-process-to-office-365-applications
ASKER
I'm definitely new to this whole conversation. My question for starters is: -- Can you login our 'portal' by authenticating against on-premise AD -- and then click an email button and see your O365 mail display. I see the links to ADFS - but I don't understand how the 'password' is saved/passed, etc.. to avoid additional login. Thanks
One of the main benefits of AD FS is that you get signed in with your domain username/password automatically - you dont have to type them in. Try for example this link:
https://login.microsoftonline.com/login.srf?wa=wsignin1.0&whr=domain.com&wreply=https://outlook.office365.com/owa/
Replace your domain name after the whr= parameter, and see how it goes. Are you asked to enter credentials and what happens after you do?
https://login.microsoftonline.com/login.srf?wa=wsignin1.0&whr=domain.com&wreply=https://outlook.office365.com/owa/
Replace your domain name after the whr= parameter, and see how it goes. Are you asked to enter credentials and what happens after you do?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
https://login.microsoftonline.com/login.srf?wa=wsignin1.0&whr=domain.com&wreply=https://outlook.office365.com/owa/ -- going to this link -- after swapping in my domain takes you to my federation page. There I may login. What I'm looking for is a solution -- where I don't have to login because I'm already authenticated to the portal.
We need to login the university portal -- using on-premise AD -- and then get email access by clicking on email button -- for further login required -- since the login is the same and you've already supplied.
We need to login the university portal -- using on-premise AD -- and then get email access by clicking on email button -- for further login required -- since the login is the same and you've already supplied.
Well you simply need to configure your AD FS server *and* client computers for seamless login. Read here: http://blogs.technet.com/b/abizerh/archive/2013/04/11/more-information-about-sso-experience-when-authenticating-via-adfs.aspx