Why you should configure Single Sign-On for iManage

Why you should configure Single Sign-On for iManage

Why you should configure Single Sign-On for iManage

iManage 10.x allows you to configure sign on using SAML or more commonly known as single sign-on (SSO).  SSO is a newer addition to iManage authentication and allows for more secure connectivity to your iManage installation.  Prior to SSO you had the option of either explicit authentication or Active Directory integration.

Explicit authentication forces you to authenticate directly with iManage sending usernames and passwords directly to the iManage server(s).  Active Directory integrated authentication passes the user’s credentials to Active Directory, but the iManage server still handles the user’s credentials in order to send them to Active Directory.

By contrast, with Single Sign-On, the iManage server forwards access requests directly to the identity provider.  In this way iManage never handles the user’s credentials.  The user directly authenticates with the identity provider who then forwards a “token” to iManage either authorizing or denying access to the user.

This difference is important because it makes it more difficult to exploit iManage to gain access since the system never handles any credentials.  It forwards all access requests to an identity provider.  iManage only accepts tokens from the identity provider.

WHAT ARE YOUR THOUGHTS?

THIS BLOG POST IS BY
Todd received his MBA from Villanova University and his B.S. in Electrical Engineering from Penn State. Prior to joining Adaptive Solutions as Director of Datacenter Operations in January 2008, Todd worked for his own consulting firm for the last ten years providing technical expertise for a variety of large and mid-sized corporate clients including General Motors (Saturn Division) in Delaware. Todd assumed the role of Chief Technology Officer in December of 2012. In his current role with Adaptive Solutions, Todd helps to set best practices and technology standards for the company. Todd also has a wide range of expertise, including VDI, virtualization, and numerous Microsoft technologies, as well as document management. Todd maintains numerous Microsoft Engineer certifications and is considered an expert in the field of server and desktop virtualization.

Leave a Comment





SHARE THIS POST!