ADC

Form SSO profiles

September 21, 2020

Contributed by:

To enable and configure forms-based SSO, you first create an SSO profile.

Note

Forms-based single sign-on does not work if the form is customized to include Javascript.

In this feature, the terms “profile” and “action” mean the same thing.

To create a form SSO profile by using the command line interface

At the command prompt, type:

add tm formSSOAction <name> -actionURL <URL> -userField <string> -passwdField <string> -ssoSuccessRule <expression> [-nameValuePair <string>] [-responsesize <positive_integer>][-nvtype ( STATIC | DYNAMIC )][-submitMethod ( GET | POST )]
show tm formSSOAction [<name>]

Example

add tm formSSOAction SSO-Prof-1 -actionURL "/logon.php"
-userField "loginID" -passwdField "passwd"
-nameValuePair "loginID passwd" -responsesize "9096"
-ssoSuccessRule "HTTP.RES.HEADER("Set-Cookie").CONTAINS("LogonID")"
-nvtype STATIC -submitMethod GET
–sessTimeout 10 -defaultAuthorizationAction ALLOW
<!--NeedCopy-->

To modify a form SSO by using the command line interface

At the command prompt, type:

```set tm formSSOAction -actionURL -userField -passwdField -ssoSuccessRule [-nameValuePair ] [-responsesize ][-nvtype ( STATIC | DYNAMIC )][-submitMethod ( GET | POST )]


### Example

set tm formSSOAction SSO-Prof-1 -actionURL “/logon.php” -userField “loginID” -passwdField “passwd” -ssoSuccessRule “HTTP.RES.HEADER(“Set-Cookie”).CONTAINS(“LogonID”)” -nameValuePair “loginID passwd” -responsesize “9096” -nvtype STATIC -submitMethod GET –sessTimeout 10 -defaultAuthorizationAction ALLOW

## To remove a form SSO profile by using the command line interface

At the command prompt, type:

```rm tm formSSOAction <name><!--NeedCopy-->

Example

rm tm sessionAction SSO-Prof-1
<!--NeedCopy-->

To configure form SSO profiles by using the configuration utility

Navigate to Security > AAA - Application Traffic > Policies > Traffic.
In the details pane, click the Form SSO Profiles tab.
On the Form SSO Profiles tab, do one of the following:
- To create a new form SSO profile, click Add.
- To modify an existing form SSO profile, select the profile, and then click Edit.
In the Create Form SSO Profile or Configure Form SSO Profile dialog, specify values for the parameters:
- Name*—name (Cannot be changed for a previously configured session action.)
- Action URL*—actionURL
- User Name Field*—userField
- Password Field*—passField
- Expression*—ssoSuccessRule
- Name Value Pair—nameValuePair
- Response Size—responsesize
- Extraction—nvtype
- Submit Method—submitMethod</span>
Click Create or OK, and then click Close. The form SSO profile that you created appears in the Traffic Policies, Profiles, and Form SSO Profiles pane.

The official version of this content is in English. Some of the Cloud Software Group documentation content is machine translated for your convenience only. Cloud Software Group has no control over machine-translated content, which may contain errors, inaccuracies or unsuitable language. No warranty of any kind, either expressed or implied, is made as to the accuracy, reliability, suitability, or correctness of any translations made from the English original into any other language, or that your Cloud Software Group product or service conforms to any machine translated content, and any warranty provided under the applicable end user license agreement or terms of service, or any other agreement with Cloud Software Group, that the product or service conforms with any documentation shall not apply to the extent that such documentation has been machine translated. Cloud Software Group will not be held responsible for any damage or issues that may arise from using machine-translated content.

Form SSO profiles

September 21, 2020

Contributed by:

September 21, 2020

Contributed by:

Form SSO profiles

To create a form SSO profile by using the command line interface

Example

To modify a form SSO by using the command line interface

Example

To configure form SSO profiles by using the configuration utility

In this article