Salesforce Community Single Sign-on (SSO)

miniOrange's SSO solution enables users to securely access Salesforce Community and other cloud applications with a single set of login credentials from their existing identity providers or user store, such as Active Directory, Databases By eliminating the need to remember multiple sets of login credentials, users can save time and reduce the risk of security breaches. This is because SSO reduces the likelihood of users resorting to less secure practices, such as writing down passwords, using the same password across multiple accounts, or using easily guessable passwords. With miniOrange's SSO solution, users can access their applications more quickly and easily while maintaining a high level of security.

The benefits of using miniOrange's SSO solution for Salesforce Community are numerous for management, HR, and staff members:

miniOrange offers Real-time User Provisioning and Deprovisiong along with SSO with Salesforce Community
SSO saves time and reduces annoyance for employees by removing the need to remember many login credentials for various applications. The productivity of employees is also boosted by this simplified access to several programmes.
Through the elimination of the need to create and manage several accounts for each employee across various apps, SSO streamlines the onboarding and offboarding process for HR. Time is saved and administrative costs are decreased.
SSO improves monitoring and administration of access credentials for management by giving them improved visibility into employee behavior across many applications. This increases compliance and lowers the chance of security breaches.

To get started with miniOrange's SSO for Salesforce Community, simply follow the provided setup guide to integrate SAML SSO into your account. With this solution, you'll have streamlined access to all your applications with just one login, making your workflow more efficient and secure.

Get Free Installation Help

miniOrange offers free help through a consultation call with our System Engineers to Install or Setup Salesforce Community SSO solution in your environment with 30-day free trial.

For this, you need to just send us an email at idpsupport@xecurify.com to book a slot and we'll help you in no time.

miniOrange and Salesforce Community Single Sign-On (SSO ) Integration supports the following flows:

SP (Service Provider) Initiated Single Sign-On (SSO)

In this flow, the user tries to login to the Serivce Provider (Salesforce Community) directly. The request is redirected to the Identity Provider for authentication. On sucessfull authentication from the Identity provider, the user is given access to the application.

IdP (Identity Provider) Initiated Single Sign-On (SSO)

In this flow, the user logs in to the Identity Provider using his credentials. Now the user can access any of the configured Service Providers (salesforce community, etc.) through the Identity Provider Dashboard without having to enter the credentials agian.

(Note - In order to do SP initiated SSO into Salesforce Community, you need to create a custom Domain. Check this link - Salesfoce domain changes and follow the below steps)

Login to your Salesforce Community account.
Go to Setup in the top-right section of page.

Salesforce Community Single Sign-On (sso)

Now in the left pane, select Domain Management.
Select My Domain.
Choose your domain name, check for availability and if available, proceed by clicking the Register Domain button.

Salesforce Community Single Sign-On (sso) Register domain

Test your domain once it is ready, by clicking the link and then click Deploy to Users.
Search for Company Information in the search bar.
Copy Organization Id. (This will be required later)

Salesforce Community Single Sign-On (sso) copy organization id

Follow the Step-by-Step Guide given below for Salesforce Community Single Sign-On (SSO)

Enter the following values in the respective fields.

Application Name	Salesforce Community
SP Entity ID or Issuer	https://[yourdomain].my.salesforce.com/?so=[organization_id]
ACS URL	https://[yourdomain].my.salesforce.com/?so=[organization_id]
Single Logout URL	https://customdomain.my.salesforce.com
Sign Response	ON

Salesforce Community SSO (Single Sign-On) add IdP basic settings

Click Next, now in the Attribute Mapping add and configure the attributes.

Salesforce Community SSO save configuration

Click on Save.
Your application is saved successfully. Now click on the Select button against your newly created application. Go to Metadata.

Salesforce Community SSO (Single Sign-On) Select Metadata for SAML

On the Metadata page, click on Show Metadata Details and choose either of the two Metadata options :

If you want to use miniOrange as User-Store i.e., your user identities will be stored in miniOrange then download the metadata file under the heading 'INFORMATION REQUIRED TO SET MINIORANGE AS IDP'.
If you want to authenticate your users via any external Identity Provider (IDP) like Active Directory, Okta, OneLogin, Google, Apple ID, etc then download the Metadata file under the heading 'INFORMATION REQUIRED TO AUTHENTICATE VIA EXTERNAL IDPS'.

Salesforce Community SSO (Single Sign-On) View IdP metadata

Then click on Download Metadata.

Salesforce Community Single Sign-On (sso) Download Metadata

2. Configure SSO for Salesforce Community Site

Pre-requisite: You need to configure SSO for Salesforce Community using the Salesforce.com application in miniOrange. Click Here for more details.
Copy the Issuer & Entity ID from the Salesforce.com app setup instructions.

Navigate to Admin > Applications > Select Salesforce.com
Click Sign on tab.
Click View Setup Instructions. Copy the Issuer & Entity ID values.

Copy the Community Site SSO login URL.

Log into your Salesforce Community instance as an Admin.
Navigate to Security Controls > Single Sign-On Settings.
Select the name of the SSO configuration created for the Saleforce.com application.
Scroll down and expand the For Communities option. Copy the Single Sign on URL.