Single Sign On Server (SSO)
Location in GUI: Objects » AAA Server » Single Sign-on Server
Diagram
Section titled “Diagram”
Classes
Section titled “Classes”objects (fmc.domains)
Section titled “objects (fmc.domains)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| single_sign_on_servers | List | [single_sign_on_servers] | No |
single_sign_on_servers (fmc.domains.objects)
Section titled “single_sign_on_servers (fmc.domains.objects)”| Name | Type | Constraint | Mandatory | Default Value |
|---|---|---|---|---|
| name | String | Yes | ||
| sso_url | String | Yes | ||
| identity_provider_certificate | String | Yes | ||
| identity_provider_entity_id_url | String | Yes | ||
| base_url | String | No | ||
| identity_provider_accessible_only_on_internal_network | Boolean | true, false | No | false |
| logout_url | String | No | ||
| request_identity_provider_reauthentication_at_each_login | Boolean | true, false | No | false |
| request_signature_type | Choice | NO_SIGNATURE, RSA-SHA1, RSA-SHA256, RSA-SHA384, RSA-SHA512 | No | NO_SIGNATURE |
| request_timeout | Integer | min: 1, max: 7200 | No | 300 |
| service_provider_certificate | String | No |
Examples
Section titled “Examples”Pre-requisites:
fmc: domains: - name: Global objects: certificate_enrollments: - name: MyCertificateEnrollmentName1 description: PKCS12 certificate enrollment example enrollment_type: PKCS12 pkcs12: certificate_file: "../files/cert.p12" passphrase: cisco123Single sign-on server
fmc: domains: - name: Global objects: single_sign_on_servers: - name: MySSOServerName1 sso_url: https://sso.mycompany.com/sso identity_provider_certificate: MyCertificateEnrollmentName1 identity_provider_entity_id_url: https://sso.mycompany.com/entityid