Note:
If Exact Globe Next is configured for the federated identity environment, the federated identity services must also be configured to support the federated identity authentication, and to perform the federated identity authentication using the configured federated identity provider details.
This document describes the following:
When Exact Globe Next needs to be configured for federated identity, several values need to be provided to successfully manage this. To define the configuration file correctly, you need to configure your Windows Azure Active Directory (WAAD) using the Azure portal.
After logging in to your Azure portal, go to the active directory page and select the active directory you wish to use.
To configure the WAAD applications, do the following:
Creating a Web application
To use federated identity with Exact Globe Next, the following configuration details must be made available in Exact Globe Next:
The configuration details stated must be entered in the Federated Identity Configurator, to generate the federated identity configuration files for Exact Globe Next.
To retrieve your WAAD configuration details, log in to your WAAD account and view the WAAD application or client that you have configured for Exact Globe Next.
For more information on how to retrieve these details, see How-to: Retrieving information for Windows Azure Active Directory and Auth0.
Note: All values are case-sensitive; you should use the exact value, including any symbols. You are advised to always use lowercase to avoid a mismatch of the values.
To configure Exact Globe Next to use WAAD as the authentication provider, the web application must have the following files configured for the token-based authentication:
These files should be configured and generated by the Federated Identity Configurator.
After generating the federated identity configuration files, the Exact Entity Service should be restarted.
When the Exact Globe Next services are configured to use the federated identity authentication, the Exact Globe Next application should be configured the same way.
The login screen will be displayed for WAAD when starting Exact Globe Next. In the login screen, the user name and password will be verified by Auth0 against the information configured at GlobeIdentity.config. The GlobeIdentity.config file has to be created and placed into the Exact Globe Next installation folder under the bin sub folder. For example, C:\Program files\Exact Globe Next\bin.
The password will be encrypted and stored at C:\Users\\AppData\Local\IsolatedStorage. The final sub folder will be stored in the AssemFiles folder.
The exception handling log file will be created in a text file format (ExactSSOExceptions.txt) at C:\Users\\AppData\Roaming\Exact.