You can connect your editorial calendar Desk-Net with MS Active Directory.
The roll-out has been planned to take place in two phases:
- Live: Single sign-on for Desk-Net users with an AD account
- Scheduled for Q2 2020: Federation services for admins so that they can create and de-activate Desk-Net user accounts right in ADFS.
How to Set Up Single Sign-On with ADFS for Desk-Net?
- Your company needs to be both an ADFS user as well as a Desk-Net customer.
- Your Desk-Net subscription must include access to the SAML security features. You get access to these features by purchasing the Support & Security Package. If you are a large enterprise customer this will likely be included in your package.
As a result you need to be eligible to access the Security page in Desk-Net.
Please contact Desk-Net Sales if you are interested in this feature, but don't have access to it.
Setting up the Connection
Follow these steps in ADFS:
- Create a new Relying Party Trust with
- Federation metadata addresses: https://desknet-saml.s3.eu-central-1.amazonaws.com/desk-net.com.sp.xml
- Display name (e.g. "Desk-Net")
- Claim rule name: Send E-Mail As Name Id
- ADFS properties: Add the mobile endpoint https://desk-net.com/m/mobile.htm (using POST binding)
- Copy the metadata URL for use in Desk-Net
Once you have done this in ADFS setting it up in Desk-Net is easy:
- Access the Security page in Desk-Net
- In the ADFS section enter the following data from your company's ADFS's account:
- Domain name (e.g. "acme-publishing.com")
- Metadata URL
- Test the connection by clicking on Test Connection
- Click Save at the bottom of the page and you are all done.
How Users Can Use the Single Sign-On
For the first login after the ADFS connection has been set up users access Desk-Net via the usual login page.
On that page they find a button Login With ADFS. They are then prompted to enter the domain name that's related to their ADFS account.
Please check the special page with a list of potential SAML error messages.