Loading
Salesforce now sends email only from verified domains. Read More
Own from Salesforce
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            Enable Single Sign-on for FedRAMP

            You are here:

            1. Salesforce Help
            2. Docs
            3. Own from Salesforce

            Enable Single Sign-on for FedRAMP

            Within the Own Government Cloud platform, single sign-on (SSO) is the only authentication method available for user login. Own from Salesforce supports single sign-on using SAML 2.0. Instead of relying on local authentication for password and security policies, you can set your own authentication using your managed identity provider (IdP).

            Single sign-on is supported using SAML 2.0 and IdP-initiated flows. The identity provider must allow the SAML Assertion to be used in order to authenticate. The SSO application needs to be created in your IdP provider before SSO can be enabled.

            Single sign-on settings can be accessed only by Admin and Master Admin users. These settings are hidden from all other users. Admin users have read-only access, and Master Admins can edit settings.

            Note
            Note Users can't set their passwords directly within the Own application. The password length, complexity rules, expiration, and password history cannot be enforced within Own. Instead, this is handled through their identity provider. Users can't use the Forgot/Reset Password link. If they attempt to do so, they are directed to their identity provider for assistance.
            1. Log in to the Own Data Platform.
            2. In the Account Options menu, select Account Settings.
            3. On the Account Settings page, select the Security tab.
            4. Select Single Sign On (SSO) and enter the information:
              1. Identity Provider name: Provide a name for the single sign-on provider.
              2. SAML issuer: Enter the identity provider issuer.
              3. Certificate fingerprint: Ensure that the downloaded certificate has a .pem file extension and click Upload certificate... to add the certificate.
              4. Logout URL: Provide the URL for a web page to display after logging out.
            5. Save your changes.
            • Configure Identity Providers (IdP) for SSO in Own Government Cloud
              Customers can configure their own authentication using managed identity providers. The Own Government Cloud platform supports Azure IdP, Okta IdP, and Salesforce IdP. We recommend that Master Administrators follow the configuration instructions for their provider.
             
            Loading
            Salesforce Help | Article