本文发表在 rolia.net 枫下论坛我是门外汉,但是我觉得salesforce的这些说明对于一个内行,应该是很清楚了,IT现在不懂,就把问题往外推。
还有,同一台电脑2个用户怎么实现SSO,比如,我有一个管理员账号,还有一个测试账号,都是用一台电脑登录,怎么认证?
还有其他桌面程序,比如excel,outlook登录salesforce的程序,怎么实现SSO,这些salesforce都有说明。但是IT根本不看这些,而是按照自己对SSO的理解,作了一个LDAP,我觉得思路都不清晰。
Build vs. Buy Considerations:
– Salesforce.com provides tools and sample code for SSO,
but some work and quite a bit of technical knowhow is
involved in building a SSO solution from scratch.
– A custom SSO solutions also requires maintenance.
– Ping & TriCipher provide out-of-the-box solutions to help
accelerate implementation and reduce the amount of
custom code to support.
NOTE: Username/password credentials are passed to Salesforce.com. No matter
how secure SFDC may be, many large companies will have issues with this. To get
around this issue, many companies adopt SSO as depicted in the next slide
NOTE: This scheme avoids corporate username/password credentials from getting
passed to SFDC. Only the username and generated token are passed to SFDC.更多精彩文章及讨论,请光临枫下论坛 rolia.net
还有,同一台电脑2个用户怎么实现SSO,比如,我有一个管理员账号,还有一个测试账号,都是用一台电脑登录,怎么认证?
还有其他桌面程序,比如excel,outlook登录salesforce的程序,怎么实现SSO,这些salesforce都有说明。但是IT根本不看这些,而是按照自己对SSO的理解,作了一个LDAP,我觉得思路都不清晰。
Build vs. Buy Considerations:
– Salesforce.com provides tools and sample code for SSO,
but some work and quite a bit of technical knowhow is
involved in building a SSO solution from scratch.
– A custom SSO solutions also requires maintenance.
– Ping & TriCipher provide out-of-the-box solutions to help
accelerate implementation and reduce the amount of
custom code to support.
NOTE: Username/password credentials are passed to Salesforce.com. No matter
how secure SFDC may be, many large companies will have issues with this. To get
around this issue, many companies adopt SSO as depicted in the next slide
NOTE: This scheme avoids corporate username/password credentials from getting
passed to SFDC. Only the username and generated token are passed to SFDC.更多精彩文章及讨论,请光临枫下论坛 rolia.net