Has anyone implemented it and have a easy to follow guide? (the solarwinds one isn't really suitable for newbies!)
We don't have it implemented in our internal WHD at SolarWinds, because almost 80-90% employees open tickets by sending email.
However, nice article how to set it up is here: http://knowledgebase.solarwinds.com/kb/questions/4204/How+To+Configure+Single+Sign+On+For+Web+Help+Desk+Using+Active+Directory+Federation+Services
Regards,
Filip Nespor
IT department
I have set this up successfully.
I would not follow the guide as it is missing some vital bits of information.
You will notice that in the release notes of the new forthcoming version that there is improvements to the ADFS documentation - this is down to some work I did with their support desk to get ADFS working.
I would perhaps wait until that is released
Two big things when doing the ADFS SSO thing is you need WHD setup for SSL and only using the HTTPS port and if
installing ADFS on anything below Win server 2012 is download ADFS 2.0 from MS as the role on 2008R2 is for ADFS 1.0
which isn't SAML 2.0 compatible.
When creating the RP trust use the metadata provided by WHD, and once it is created change the Secure hash algorithm
to SHA1 and then create a claim rule using LDAP attributes with SamAccountName to NameID.
Also make sure on the /adfs/ and /adfs/ls/ sites have windows auth enabled.
Helpdesk is already running on HTTPS and the ADFS server is 2012 R2.
I've tried importing the metadata for the RP via the URL https://helpdesk.domain.com/helpdesk/WebObjects/Helpdesk.woa (obviously replacing domain.com) but get an error saying that the file can't be found.
SolarWinds solutions are rooted in our deep connection to our user base in the THWACK® online community. More than 195,000 members are here to solve problems, share technology and best practices, and directly contribute to our product development process.