Loading
Salesforce now sends email only from verified domains. Read More
Identify Your Users and Manage Access
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            Configure SSO from Salesforce to Accellion

            You are here:

            1. Salesforce Help
            2. Docs
            3. Identify Your Users and Manage Access

            Configure SSO from Salesforce to Accellion

            Let your users log in to Accellion using single sign-on (SSO) from your Salesforce org configured as an identity provider.

            Required Editions

            Available in: Lightning Experience and Salesforce Classic
            Available in: Enterprise, Performance, Unlimited, and Developer Editions

            When you set up Accellion as a service provider and create a connected app in Salesforce, users can access Accellion using their Salesforce login credentials.

            Follow these high-level steps to configure SSO for Salesforce to Accellion.

            See Also

            Set Up Your Salesforce Org as an Identity Provider

            With the My Domain feature, your Salesforce org is enabled as an identity provider. My Domain is required for all orgs. If you don’t like your org’s My Domain name, you can change it.

            The My Domain feature also includes a certificate and key pair. The certificate establishes trust between your Salesforce org and Accellion. Optionally, you can use another self-signed certificate or import a CA-signed certificate.

            To download the Salesforce self-signed certificate:

            1. From Setup, enter Identity Provider in the Quick Find box, and select Identity Provider.
            2. Click Download Certificate.

            Configure SAML Settings in Accellion

            1. Log in to your Accellion administrative account.
            2. From the menu, under Administration, select SSO.
            3. Edit the SAML settings for your identity provider.
              • For email Attribute, enter Email.
              • For Entity ID, enter https://MyDomainName.my.salesforce.com.
              • For Single Sign-On Service URL, enter https://MyDomainName.my.salesforce.com/idp/endpoint/HttpRedirect.
              • For Single Logout Service URL, enter https://MyDomainName.my.salesforce.com/secur/logout.jsp.
              • For RSA Public Key Certificate, select the Salesforce certificate that you downloaded.
            4. Save the settings.
            5. Accellion displays the service provider information that you need when you set up the Salesforce connected app. Save these URLs:
              • Entity ID, which uses the format https://domain_name/simplesaml/module.php/saml/sp/metadata.php/default-sp/3356, where domain_name is the name of your Accellion domain. For example, https://cloud-eval-hc2b.accellion.net/simplesaml/module.php/saml/sp/metadata.php/default-sp/3356.
              • SAML Assertion Consumer Service Endpoint, which uses the format https://domain_name/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp/3356, where domain_name is the name of your Accellion domain. For example, https://cloud-eval-hc2b.accellion.net/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp/3356.
            Accellion SAML settings

            Create a Connected App in Salesforce

            1. In Salesforce, create a connected app
              1. In Lightning Experience, from Setup, enter App in the Quick Find box, and select App Manager. Click New Connected App.
              2. In Salesforce Classic, from Setup, enter Apps in the Quick Find box, and select Apps. Under Connected Apps, click New.
            2. Configure the connected app Basic Information settings.
              1. Enter a name for the Accellion connected app. Salesforce uses this name to populate the API name.
              2. Enter your email address in case Salesforce must contact you or your support team.
              3. Optionally, upload or specify a logo and icon to represent your Accellion application in the Salesforce App Launcher.
            3. Configure the connected app Web App Settings.
              • Select Enable SAML.
              • For Entity Id, enter the URL that Accellion provided, for example, https://cloud-eval-hc2b.accellion.net/simplesaml/module.php/saml/sp/metadata.php/default-sp/3356.
              • For ACS URL, enter the URL that Accellion provided, for example https://cloud-eval-hc2b.accellion.net/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp/3356.
              • For Subject Type, select Persistent ID.
              • For Name ID Format, select urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified.
              • For Issuer, keep the default value, which is your My Domain login URL.
              • For IdP Certificate, keep the default (Default IdP Certificate).
            4. Save the settings.
            5. Configure a custom attribute for the connected app.
              1. From Setup, enter Apps in the Quick Find box.

                If you’re using Lightning Experience, select Manage Connected Apps.

                If you’re using Salesforce Classic, under Manage Apps, select Connected Apps.

              2. Click the name of your connected app for Accellion. The connected app detail page appears.
              3. Under Custom Attributes, click New.
              4. Enter the attribute key Email with a value of $User.Id.
              5. Save the settings
            6. Configure profiles and permission sets for the connected app.
              1. From Setup, enter Apps in the Quick Find box.

                If you’re using Lightning Experience, select Manage Connected Apps.

                If you’re using Salesforce Classic, under Manage Apps, select Connected Apps.

              2. Click the name of your connected app for Accellion. The connected app detail page appears.
              3. Click Manage Profiles or Manage Permission Sets, and add profiles or permission sets for the users who can access this app.
            7. In Salesforce, enter the start URL for the connected app.
              1. On the connected app detail page, click Edit Policies.
              2. For Start URL, enter the URL for your Accellion domain, for example https://cloud-eval-hc2b.accellion.net.
              3. Save the settings.
            SAML service provider settings

            Test the Connected App

            In Salesforce, from the App Launcher, find the Accellion application. If you configured the Accellion logo and icon for the connected app, the App Launcher displays them. If the identity provider–initiated SSO is configured properly, Salesforce creates an application session.

             
            Loading
            Salesforce Help | Article