- #FEDERATED ACCESS AND IDENTITY WITH CA SSO AND RADIANT ONE INSTALL#
- #FEDERATED ACCESS AND IDENTITY WITH CA SSO AND RADIANT ONE WINDOWS#
Under Application Parameters, enter your O365 Domain and your Issuer URI that we used in the above PowerShell Command.The next step will be different depending on whether you are configuring a single O365 domain or multiple O365 domains.You will need to use this app even though we will not be using the provisioning capabilities. In the Search Filter, enter “Office” and Select “Office365 with Provisioning”.In the Workspace ONE Access console, go to Catalog -> Web Apps.After running the above command, if you run a “get-msoldomain”, you should see the domain is now “Federated”.Set-MsolDomainAuthentication –DomainName theidentityguy.ca –IssuerUri –Authentication Federated -FederationBrandName "The Identity Guy" -PassiveLogOnUri -ActiveLogOnUri -LogOffUri -MetadataExchangeUri -SigningCertificate MIIFDTCCAvWgAwIBAgIHAIPiCczH9TANBgkqhkiG9w0BAQsFADA+MSAwHgYDVQQDDBdWTXdhcmUgSWRlbnRpdHkgTWFuYWdlcjENMAsGA1UECgwERFNBUzELMAkGA1UEBhMCVVMwHhcNMTkwMjA4MTkyMjQxWhcNMjkwMjA1MTkyMjQxWjA+MSAwHgYDVQQDDBdWTXdhcmUgSWRlbnRpdHkgTWFuYWdlcjENMAsGA1UECgwERFNBUzELMAkGA1UEBhMCVVMwggIiMA0GC Note: For illustration purposes, I’ve truncated my signing certificate below: In your PowerShell window, run the “Set-msoldomainAuthentication” command by combining all the above values.I recommend you getting your signing certificate this way to remove all the line breaks that you would have if you downloaded the signing certificate from the access console. In your browser, access your IDP metadata: Ĭopy your signing certificate from the Signing Section. When configuring multiple domains, enter the domain ID for the specific domains. The IssuerUri is a unique identifier that will be used to identify this federation agreement. This is your AAD Domain that you will be federating to Workspace ONE Access: i.e. Preparing our Set-MsolDomainAuthentication Command Building your PowerShell Command PowerShell Variable In this example, I’m going to federate my theidentityguy.ca domain.You might have some domains in a “Managed” state and some domains in a “Federated” state. You will see a summary of your domains including the current authentication setting. Once you are logged in, run the following command to view your Azure AD domains.Once you have MSOnline installed, then type the following to enter your Office 365 admin credentials and connect to Azure Active Directory:.
#FEDERATED ACCESS AND IDENTITY WITH CA SSO AND RADIANT ONE INSTALL#
If you don’t have the MSOnline module installed, you will need to install it.