Single Sign-On

Download Report

Transcript Single Sign-On

Yammer and Single Sign-on

2

Audience and Requirements

Audience: Yammer’s Single Sign-On (SSO) module is targeted at system administrators, system engineers, tech support, and self-service personnel.

Implementing the Yammer Single Sign-on Module Requires: • • • A SSO server that can send SAML 1.1 or 2.0 assertions An endpoint uniform resource identifier (URI), preferably one that can also be accessed from outside your network An engineer familiar with configuring your SSO server

3

Topics and Learning Objectives

This deck covers the following topics about Yammer’s Single Sign-on module: • • How SSO will affect your users’ experience What you need to know about implementing Yammer’s SSO before going live After completing this course, you will be able to: • • • Describe Yammer’s integration with SSO and its benefits Articulate Yammer’s SSO integration process to customers Complete Yammer’s SSO Checklist and Rollout Communications Guide

Single Sign-on Overview

5

What Does Yammer’s SSO Module Do?

SSO lets you quickly and easily access Yammer in just one click from a single sign-on portal , where all your enterprise applications are already located.

Yammer’s SSO server connects to your existing SAML-based SSO server to automatically log in your users based on your authentication mechanisms.

SSO Portal User SAML SSO Server

6

The Benefits of Single Sign-on

SSO has a variety of benefits, a few of which are described below: • Users won’t need to remember unique Yammer login details, saving time, and reducing the risk of phishing attacks.

• SSO makes mobile access frictionless. After the first time, users on mobile devices will never have to reenter their credentials.

• System administrators only need to manage a single, centralized SAML server for authentication, instead of several servers each handling authentication for their applications and systems.

7

What if I can’t use Single Sign-on?

SSO gives users a great experience. However, if you cannot implement SSO, Yammer provides user management capabilities: • • • • • Individually invite local users and out-of-network guests to join the network or use bulk import to add users from a .csv file Deactivate users and choose to keep or delete their messages Block users from joining the network Delegate the ability to invite and manage users to others View the activity of individual users The above list highlights some of Yammer’s built-in user management capabilities. For more information on Yammer’s user management tools please see The Yammer Admin Guide .

Implementing Yammer’s Single Sign-on Module

SSO Implementation Process

Customer creates a new service provider connection (relying party trust) on SSO server Customer exports a metadata file (preferable) or provides the following to Yammer: • Entity ID • Endpoint URI • Public certificate • SAML version (1.1 or 2.0) Yammer creates identity provider connection and imports customer metadata file Yammer exports identity provider metadata to file and sends it to the customer

9

Customer imports metadata file in relying party trust Customer emails Yammer’s Customer Success Team when ready to enable SSO Yammer activates SSO for customer network Customer tests new SSO configuration and lets Yammer’s Customer Success Team know if ready to leave on permanently

User Experience on Yammer SSO

After implementing SSO, a user logging into Yammer will have the following experience:

10

1.

Users will log into their SSO Portal.

2.

The SSO page will link the user to the SAML SSO server.

3.

The user is now logged into Yammer and other SSO-enabled apps.

11

Next Steps

1.

Fill Out The Yammer SSO Checklist 2.

• • • • The Yammer SSO Checklist will help you prepare for the SSO rollout in your organization. Here’s what you will need to know in order to fill the checklist out: Information on your organization’s identity provider Use case for implementing SSO (access control, security, user convenience, and so forth) Information about the number of users you expect to join the network Testing, encryption, and certification requirements your organization may have Review Yammer SSO Rollout Communications Guide The Yammer SSO Rollout Communications Guide will help you introduce SSO to your company, provide support to your users, and activate mobile devices.

Learning Review and Additional Resources

13

Learning Review

In this deck we provided information covering: • • • The benefits of using an SSO solution An overview of Yammer’s SSO module implementation process The next steps you will need to take to implement Yammer’s SSO module With this information, you should be able to: • • • Describe Yammer’s integration with SSO and its benefits Articulate Yammer’s SSO integration process to customers Complete Yammer’s SSO Checklist and Rollout Communications Guide

14

Additional Resources

The Single Sign-On section of the Yammer Success Center can provide you with additional information about Yammer SSO. The site has the following resources: • • • • • • Yammer Single Sign-on Implementation Guide Yammer Single Sign-on Rollout Communications Guide Activate Yammer on Your Mobile Device Activate Yammer on Your Mobile Device - Exceptions Yammer Single Sign-on Implementation FAQ Single Sign-on Checklist