Single sign-on for accounts using Active Directory RMS to secure their resources
AD RMS allows individuals and administrators through IRM policies to specify access permissions to documents, workbooks, and presentations.
The AD RMS Single Sign-on (SSO) Integration creates a client application that uses Auth0 for authentication and provides SSO capabilities for AD RMS. Your users log in to AD RMS with Auth0 identity providers, which means the identity provider performs the identity credentials verification.
The steps in this guide are valid for Active Directory Rights Management Services 2008 and earlier.
Before you begin:
- Sign up for an AD RMS account.
- Set up a connection, which is a source of users. Connections can be databases, social identity providers, or enterprise identity providers, and can be shared among different applications. You may set up more than one connection for use with SSO integrations.
Configure Auth0 SSO Integration
Enter a name for your SSO Integration, configure the following settings, and click Save.
|Rights Management Services URL||URL of your Active Directory Rights Management Server.|
|Use Auth0 instead of the IdP to do Single Sign-on (SSO). **Legacy tenants only.**||If enabled, Auth0 will handle SSO instead of AD RMS.|
Configure integration with AD RMS
To configure the integration with AD RMS, follow the instructions listed in the Tutorial view (which will appear when you save the initial configuration settings).
Choose the connections to use with your SSO integration. Users in enabled connections will be allowed to log in to AD RMS. By default, all configured connections are enabled.
Select the Connections view.
Toggle the sliders next to connection names to enable or disable them.