Cisco provides many services in different form. As an end user, I want to sign on once for all of my Cisco Services. I want to find and manage my contacts from any of my Cisco application and devices, leveraging all possible sources (Corporate Directory, Outlook, Mobile contacts, Facebook, LinkedIn, History) and have them rendered in a common and consistent way which provides me with the information I need to know their availability and how best to contact them.
Singlo Sign On using SAML basically targets at this requirement. Through SAML/SSO we provide the baility to log into multiple devices through a common account and authorization identity called the IDP.
The overall objective of this work is to provide a scalable and standards based Single Sign On mechanism for our Unified Communications products. Single Sign On provides for a better user experience as the user needs to enter their authentication credentials only once for access to different UC services. In order to create such solution, common Identity Infrastructure could be provided and has been agreed to take up on. As a outcome of this, Common Identity Stack Architecture (CIS) has been proposed and decided to have following functionalities: o Common Identity/Directory Source o SAML Base authentication o SSO via SAML o OAuth base Authorization
So here is how the flow works when using SAML/SSO with CUCM10.x and ADFS2.0
1. We create an SAML integration between CUCM10.x and ADFS. 2. When you try to log on to the CUCM admin page or user page the request is redirected to the IDP (adfs). 3. The IDP then prompts to enter the credentials for login. 4. Once the credentials are authorized it redirects us back to CUCM.
In order to configure SAML/SSO with CUCM 10.x and ADFS2.0 as the IDP following are the prerequisites:
DNS server and DNS enabled in the network.
LDAP integration of CUCM with an Active Directory server.
An Active Directory server running Active Directory Federation Service version 2.0 (adfs2.0).
Windows 2008R2 server with Active Directory and domain controller roles.
Active Directory Federation service version 2.0 on one of the Active Directories within the domain.
Hi All, Does anyone have specifically sample transformation & search entries in expressways + the config used in jabber guest? I am installing a new system but for various reasons, I cannot open a TAC case. I thought I had all configured but when...
Hello Everyone, I would like to accomplish the following goal in UCCX: have an incoming call ring a number for 10s, if that number does not answer to play a prompt (saying "the person is not available, you will be redirected to voicemail") and then r...
Hi All, Has anyone heard if there is a new version of Cisco proximity being released soon. We are currently testing it, but find it incredibly laggy. I don't want to start testing it with the wider office if I can wait for a better version that...
Hi all, in a uccx i need to do a "Call Consult Transfer" to a multiple mobile phone destination until the first pick up.Is it possible with ccx editor or i need to create a line group on the fly trough axl on CUCM (i hope that this is possible ...
HiWe have CUCM 10 (10.0.1.10000-24) in our environment. Recently management decided to switch all the CIPC phone users to Jabber ( without IM and Presence Server in Phone- Only Mode). We have our End users Synced with AD (LDAP Attribute for Use...