Documentation Center

Single Sign On settings

You can Single Sign On settings in the Single Sign On section of SDL Tridion Content Manager configuration.

Procedure

  1. Start the MMC Snap-in by selecting Programs > SDL Tridion > SDL Tridion Content Manager configuration in the Microsoft Windows Start menu.
  2. Navigate to the Single Sign On section.
  3. Configure the following settings:
    ValueDescription
    Directory Service NameThe name of a Directory Service that contains groups that are mapped to Content Manager Groups. If you set this property to a value, SDL Tridion ignores User Full Name Header and User Name Qualifier.
    User Full Name HeaderThe full name of the user, made available to the SSO server. The value of this property is ignored if Directory Service Name has a value.
    User Name Header

    The user name in the SSO server:

    • If you use CA SiteMinder, fill in SM_USER.
    • If you use IBM Tivoli Access Manager, fill in iv-user.
    User Name QualifierA qualifier to identify the single sign-on user with, to prevent conflicts with internal Content Manager users with the same name, much like a domain prefix. A typical value would be SSO. The value of this property is ignored if Directory Service Name has a value.
  4. Restart IIS and COM+ to ensure updated settings are used—for performance reasons, the processes that use the MMC Snap-in settings cache them in memory.