Hi Sushant,
I have recently implemented SAML based based for Maximo, Maximo Work Center and Maximo Anywhere 763.
SAML SSO for Anywhere will be tricky and requires customization of anywhere authentication process.
Maximo and Work Center SAML SSO is achievable without much customization ( you might have to write 1 java class).
Here below is a document for Maximo SAML SSO configuration ( which I have already shared in the same post in my previous response):
https://salientprocess.zendesk.com/hc/en-us/articles/115006409528-Enabling-SAML-SSO-on-Websphere-8-5-with-a-Shibboleth-IDP
Work Center SSO can be achieved by following LDAP Configurations suggested in below tech note:
https://www.ibm.com/support/pages/deploying-maximo-work-centers-ldap-and-non-ldapIntegration : You would need to setup a MIF cluster/server which will handle the integration of Maximo to external system. I would suggest using Security domains in websphere to setup SSO based UI cluster and Non SSO based MIF clusters.
Web service URLs would be using MIF cluster based URLs.
The only tricky part are REST API and Work Center.
OSLC webapp url system property has to be the SSO URL of UI server as the same will be used by Work Center. Otherwise work center SSO will not work.
But, the same SSO url cannot be used for REST. The work around for it will be to use X-public-uri header.
X-Public-uri header will have url of the MIF server.
https://developer.ibm.com/static/site-id/155/maximodev/restguide/Maximo_Nextgen_REST_API.htmlAbove IBM document has more details on API Keys and X-public-uri for Maximo next-gen Rest API.
Hopefully this would be helpful!
------------------------------
Biplab Choudhury
Maximo Consultant
Tata Consultancy Services
Melbourne
------------------------------
Original Message:
Sent: Thu August 06, 2020 08:49 AM
From: Sushant Chalke
Subject: SSO with Azure AD
Hey Chris and Mischa,
Any tips and or any documentation on SSO implementation. Also can you please share any best practices with these configuration and how the architect components should be align in ability to enable integrations and work centers with SSO.
I'm more gearing towards SAML, and we have all type of integration channel like XML, webservice, REST, interface tables, Maximo Anywhere, Work centers.
Any help will be appreciated in order to plan this efforts for successful execution.
Thanks,
Sushant
------------------------------
Sushant Chalke
Sr. Principal Consultant
The Mosaic Company
tampa FL
8133731129
Original Message:
Sent: Wed August 05, 2020 10:19 AM
From: Mischa Fubler
Subject: SSO with Azure AD
Hi Chris,
We currently use LDAP, but will likely need to move to ADFS as we're currently moving the org to Office365.
Any tips for implementing SSO via ADFS?
------------------------------
Mischa Fubler
Original Message:
Sent: Mon July 27, 2020 10:00 AM
From: Chris Schulz
Subject: SSO with Azure AD
We setup Maximo SSO on ADFS. At some point it will be moved to Azure.
I would be interested in notes on Azure as well and would be happy to talk about ADFS.
------------------------------
Chris Schulz
Original Message:
Sent: Thu July 23, 2020 01:42 PM
From: Venkataraman Guruswamy
Subject: SSO with Azure AD
Team,
Has anyone completed SSO implementation in Maximo using Microsoft Azure AD ?
If so, can you please share steps or experiences ? did you enable using SAML or OAuth ?
Did you face any implementation challenges ?
Any leads will be helpful,
Thanks
Venkat
------------------------------
Venkataraman Guruswamy
------------------------------
#AssetandFacilitiesManagement
#Maximo