Single Sign-On (SSO)
One login for different applications?
We had different applications running but wanted to implement a loginsystem so that the user only has to login once to use all our applications. The way was to use keycloak as our single sign-on solution. Now it is possible to have only one login for every user. Another reason for using keycloak was the ability to Active Directory users without any hassle. Furthermore, it supports 2-factor authentication which is very important for us since we handle financial data.
Associate windows credentials to CRM user account
The configuration of SSO authentication requires that all CRM users have their Windows user names mapped to their CRM user account and the application pool of the update.CRM web application must be configured to support „Windows authentication“.
The following steps are required to configure SSO authentication:
1. Login to your update.CRM rights module using an administrative account
2. Navigate to the users section and open the appropriate CRM user accounts
3. Enter the user‘s Windows account and domain name to the CRM user record in order to associate the Windows user account to the CRM user account
4. Open the „Internet Information Services“ module and select the application pool of the update.CRM web-application
5. Navigate to the section „Authentication“ and make sure that „Windows authentication“ is selected (not „Anonymous authentication“)
Taggings:
