Setting up Oracle Identity Cloud Service (IDCS) as an Identity Provider to use SSO with AtomSphere

Document created by RichardNotley941 Employee on Mar 16, 2017
Version 1Show Document
  • View in full screen mode

Oracle Identity Cloud Service (IDCS) can be used as an Identity Provider to enable Single Sign-On (SSO) to Dell Boomi AtomSphere.

 

 

User Guide Articles

Here are some links to our AtomSphere User Guide which you may find useful when configuring Boomi for single sign-on and creating Federation Ids for Boomi users:

 

How to set up Oracle Identity Cloud Service to use SSO with Boomi

The following Oracle Help Centre guide can be used for reference:

 

Each user within a SSO account will be uniquely identified by their Federation Id. Typically this will be either the user's email address or a corporate identifier, such as their employee number. The key to a successful integration is ensuring that IDCS sends the correct Federation Id for the logged-on user to Boomi, and that Boomi interprets IDCS's response correctly to determine the Federation Id. This can be achieved in one of two ways:

  • Using the NameID in the Subject of the SAML response.
  • Using a specific FEDERATION_ID attribute in the SAML response.

 

This guide gives the steps necessary for the second of these approaches.

 

IDCS Configuration Steps for Identity provider-initiated log-in

This section outlines the key steps for configuring IDCS.  Start by navigating to Applications > Add > SAML Application.

 

 

On the 'App Details' screen, specify the Name, Description, Application Icon, Application URL (https://platform.boomi.com/AtomSphere).

 


On the 'SSO Configuration' tab set the appropriate values.  The Assertion Consumer URL should be set to the AtomSphere Login URL from the Boomi Single Sign-On Options (i.e. https://platform.boomi.com/sso/<accountId>/saml).

 

You will also need to 'Download IDCS Certificate'.  (This will be imported into Boomi later).

 

 

Add a new User Attribute, FEDERATION_ID and set this to the IDCS field that will be used to identify the user in Boomi (e.g. Primary Email).

 


IDCS Users can be added on the 'Users' tab.

 

 

Configuring Boomi Single Sign-On Options

In the Boomi Single Sign-On Options (under Setup for your Account), enable SSO.  You will need to import the IDCS Certificate (downloaded earlier) and provide the Identity Provider Login URL.

 

Ensure that 'Federation Id is in FEDERATION_ID Attribute element' is selected for the Federation Id Location.

 

 

In User Management, you will need to populate the Federation ID for all SSO users, with the value used for the FEDERATION_ID in IDCS (e.g. the IDCS User's email address).

 

 

Connecting to Boomi from IDCS

Login to IDCS using your user credentials, and click on the Dell Boomi App.  You will be redirected to Dell Boomi without being asked to login again.

 

Attachments

    Outcomes