MicroStrategy ONE
Registering Your Salesforce Site with MicroStrategy Identity
After you integrate the web application with MicroStrategy Idetntity, the Salesforce login page displays a QR code.
Follow the steps below to register your Salesforce site in your Identity Network.
The following steps contain only the information required to configure or use Salesforce with MicroStrategy Identity. See the Salesforce documentation for the latest information.
The steps below assume that you have Salesforce administrative privileges for the Salesforce environment to which you want to allow MicroStrategy Identity login access.
In Salesforce, you must create a custom domain name for your organization, such as https://example.my.salesforce.com
. For steps to create a custom domain name, see your third-party Salesforce documentation.
You must configure your MicroStrategy Identity system with the information necessary to connect with Salesforce.
To display a custom image on your login page, you must create the image to display. Supported image formats are .png
, .jpeg
, and .jpg
file types.
To log into Salesforce with MicroStrategy Identity, users must use the same email address for MicroStrategy Identity that they use for Salesforce.
To Register Your Salesforce Site with MicroStrategy Identity
- Log into MicroStrategy Identity Manager.
- Click Logical Gateways.
- Under Web Application Login, click More, then click Salesforce.
- To change the image that is displayed on your Salesforce login page, next to the image preview click Import an Icon, select an image to display, then click Open.
- In the Enter Display Name field, enter a name to display on your Identity login page. The name can be up to 30 characters.
- If the users in your Identity Network are added from Microsoft Active Directory, you can enable users to sign in to Salesforce by typing their Active Directory user name and password, rather than scanning a QR code. For example, if not all users in your network have access to a smartphone, you can enable users to sign in with their user name and password. To do this, select the Enable user name and password as a login option check box.
- Download the MicroStrategy Identity provider metadata file. The metadata includes a configuration
.xml
file that Salesforce uses to automatically configure the settings for connecting to MicroStrategy Identity. The metadata also contains the Identity security certificate for your Salesforce site. Note the location on your computer where the metadata.xml
file is saved. - Note the value provided for Identity Provider Logout URL.
- In a new browser window or tab, log in to Salesforce with an administrative account.
- From the Salesforce Setup page, open Security Controls, then open Single Sign-On Settings.
- Enable SAML.
- Create a new SAML single sign-on setting from a metadata file. Upload the MicroStrategy Identity provider metadata
.xml
file that you downloaded from MicroStrategy Identity Manager. The Identity metadata populates many of the fields. Provide values for the following fields: - Name: Enter a name for your MicroStrategy Identity single sign-on configuration. This name is displayed on your Salesforce login page.
- API Name: Enter an API name.
- Identity Provider Logout URL: By default, users are directed to a Salesforce web page when they log out of Salesforce. If you want users to be directed to an Identity logout page instead, enter the value for Identity Provider Logout URL provided in MicroStrategy Identity Manager.
- Save your settings.
- From Salesforce, download the metadata for the SAML single sign-on setting that you just created. The metadata includes a configuration
.xml
file that MicroStrategy Identity uses to automatically configure the settings for connecting to Salesforce. Note the location on your computer where this file is saved. - In MicroStrategy Identity Manager, click Upload Metadata. Navigate to and select the Salesforce configuration
.xml
file that you downloaded, then click Open. A message displays on the MicroStrategy Identity Manager page when the Salesforce configuration.xml
file is successfully uploaded. - Click Next.
- In the Salesforce Setup page, open Domain Management, then open My Domain. Edit your Authentication Configuration to add the Identity authentication service to your Salesforce login page.
If you want to remove the user name and password fields from your login page, clear the Login Page check box. - In MicroStrategy Identity Manager, click Done.
Next, invite Salesforce users to join your Identity Network, so they can sign in to Salesforce by scanning a QR code displayed on the Salesforce login page. For steps, see Adding Salesforce Users to Your MicroStrategy Identity Network.
Related Topics
Editing and Deleting Web Applications from Your MicroStrategy Identity Network
Signing in to MicroStrategy Identity-Enabled Web Applications from a Centralized Website
Categorizing MicroStrategy Badge Resources
Creating a MicroStrategy Identity Network and Issuing an Administrator Badge