on 03-04-2020 2:37 PM
Hello Experts,
We have created the site group for SSO (under Parent site, we have added 2 child sites).
We are not able to see/feel the SSO experience on sites ....like the functionality of automatically logged in to sites.
I have a few questions related to SSO.
Do we need to add any code on 'onLogin' event for SSO?
Do we need to compulsory implement Gigya as SAML IdP/OpenID for SSO?
Thanks,
Kalyani
Hi kalyani_94,
In some browsers you may have different SSO experiences due to restrictions that have been enforced by the browsers. Since August 2019, SSO between different domains does not work on Safari and Firefox browsers, due to tracking prevention features that target adtech. These browser changes impact SSO capabilities offered by many CIAM vendors, including SAP Customer Data Cloud. To implement SSO in these situations, see SSO with Browser Tracking Prevention.
Additionally we have a blog covering this topic that it's worth reviewing https://blogs.sap.com/?p=1050411
If you require any guidance around the architecture and implementation of SSO across your sites then I would recommend engaging with Professional Services and reaching out to your Account Manager.
Thanks
Stephen
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hi spu230479, your first link doesn't work anymore. Does this link replace what you wrote here back in Mar 2020? Site Groups and Single Sign-On | SAP Help Portal
Hi kalyani_94 ,
Can you try the following in chrome browser.
once you are logged into site A, can you open in other tab site B but the page where you have the CDC screen sets hosted and see if you are automatically logged in or not as the screen set should pull in your data automatically as the SSO is enabled in your configuration. If you see the data in the screen set then you know the session has started in the new site as well so there is probably an issue with CMS not managing it well.
Alternatively you can also do the following once logged into Site A goto site B and open the developer tools and in console type gigya.accounts.getAccountInfo() and you should see a network call with relevant API call if your session is established.
You do not need any SAML/OIDC if the sites are belonging to the same parent.
Thanks
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
User | Count |
---|---|
7 | |
1 | |
1 | |
1 | |
1 | |
1 | |
1 |
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.