Mobility Experts Team: XenMobile Mobile App SSO using SAML Sharefile

Mobility Experts Team: XenMobile Mobile App SSO using SAML Sharefile

8:28 PM
Mobility Experts Team: XenMobile Mobile App SSO using SAML Sharefile -

1. Overview

XenMobile AppController with WorxHome customer can make a single sign-on to mobile Sharefile. In this configuration, a user connecting to Sharefile using a Web browser or other Sharefile customer is redirected to the XenMobile WorxHome for user authentication and SAML token. After successful authentication XenMobile, the user receives a SAML token that is valid for connection to its Sharefile account.

This document lists the steps that must be done to achieve this. Below is the list of prerequisites:

1. XenMobile 8.6.1 components (AppController 2.9)

2. MR1 version of the MDX toolbox (ie build 2.3.372 ).

3. The following is a list of supported versions of the application Sharefile Mobile.

  • Sharefile 2.1.5 for iPAD
  • Sharefile 2.1.4 for iPhone
  • Sharefile 2.4 for Android Tablet
  • Sharefile 2.4 phone

4. WorxHome for iOS 8.6.1 and 8.6.1 for Android WorxHome

5. Sharefile admin account.

2. Configurations steps

  • Wrap Android and iOS app Sharefile Mobile using MR1 XenMobile MDX toolbox.
  • Log into the AppController checkpoint of the portal and go to the Applications & Docs tab.

  • mdx Download times Sharefile Android and iOS applications in AppController.
  • Configure MDX policies for Android and iOS, as required.
  • In the App & Docs tab select Sharefile and click edit.

  • Enter Sharefile domain and in the dropdown list select the role you want to assign this application. Sharefile enter administrator credentials and click Save. When you hit save AppController speak to Sharefile application using the above information and will push the parameters SAML SSO to Sharefile
  • Note 1 :. If a new user / existing is added to this role (ie AD group) and if it does not have Sharefile account AppController will self-supply Sharefile. For initial test objective, it is advisable to report a small group where you have few users and make sure that you have enough licenses Sharefile AppController that will self-provisioning of users who did not have an account existing Sharefile. Users who belong to this role can not access the application.
  • Note 2: Make sure AppController is able to reach Sharefile doing a ping test from AppController CLI.
  • Log in to Sharefile using the admin account and check the SAML SSO settings.
  • Also make sure that the time zone Sharefile and AppController are the same. If AppController and Sharefile clock are significantly different, network latency can cause the SAML request is not allowed because the SAML response generated by AppController will be a time value stamp in which the SAML token should reach SP (Sharefile) if the time value does not match the SSO could fails.
  • Log into the portal AppController Administrator using the following URL: https: // :. 4443 / admin and select Manage Users from the drop view
  • Click the Applications tab and select Sharefile the application, check if the user is reconciled or not. reconciled users may experience SSW Sharefile either using mobile Sharefile or using the receiver for the web. SSO will not work if the user has not reconciled.

3. Validation of iOS / Android Sharefile MDX.

  • Set WorxHome using the URL of the server XenMobile (ie MDM NetScaler URL or gateway)
  • Download and install the appropriate version Sharefile MDX implementation of WorxStore.
  • Launching Sharefile MDX app. It should do SSW Sharefile without asking for more connection details

4. Validation of WorxMail

  • Set WorxHome using the server URL XenMobile (ie MDM NetScaler URL or gateway)
  • Download and install the appropriate version of WorxMail MDX implementation of WorxStore.
  • Set WorxMail using your Exchange credentials.
  • Click New to compose email.
  • Enter the recipient's email address and click attachments, select Attach to Sharefile. (Note: for Android, you should have Sharefile MDX already installed on the device)
  • When you click Attach to Sharefile it will SSW Sharefile and show you the files available in Sharefile
.

5. Receiver Validation for the Web.

  • Open a web browser and enter the URL NetScaler gateway.
  • Enter your credentials to login.
  • Click Add and add applications Sharefile.
  • When you click Sharefile, you will SSO experience.

Important notes for SSO failure:

  • use the right versions of server and client components (use XM components 8.6.1 MR1)
  • All times in IDP (AppController) and SP (Sharefile) must be identical.
  • domain users must have the email address in Active Directory, such as SAML token will be prepared using the email address provided in Active Directory and Sharefile also accepts that the e-mail address as the user name.
  • SSO can fail if the user has not reconciled in Sharefile request. AppController can take 20 to 30 minutes to self-provision a new user.
  • AppController and a client device must be able to reach Sharefile.
Next
« Prev Post
Previous
Next Post »
0 Komentar

Subscribe to: Post Comments (Atom)