Configure Single Sign-On
The single sign-on feature allows end users to log into a Windows client machine, then use certain Cisco Unified Communications Manager applications without signing on again.
Perform the following steps to configure single sign-on in your network.
For information about configuring single sign-on with Cisco Unified Communication interface for Microsoft Office Communicator, refer to the Cisco Unified Communication interface for Microsoft Office Communicator documentation.
Procedure
Step 1 |
Ensure that your environment meets the requirements. |
||
Step 2 |
Provision the OpenAM server in Active Directory, then generate keytab files.
|
||
Step 3 |
Import the OpenAM server certificate into the Cisco Unified Communications Manager tomcat-trust store.
|
||
Step 4 |
Configure Windows single sign-on with Active Directory and OpenAM. |
||
Step 5 |
(For Cisco Unified Administration only) Verify that the user is provisioned in the Active Directory. |
||
Step 6 |
(For Cisco Unified Administration only) Synchronize the user data to the Cisco Unified Communications Manager database using the DirSync service. |
||
Step 7 |
(For Cisco Unified Administration only) Add the user to the CCM Super Users group to enable access to Cisco Unified Administration. |
||
Step 8 |
Configure client browsers for single sign-on. |
||
Step 9 |
Enable single sign-on in Cisco Unified Communications Manager. |