Sample single sign-on process
This example explains a whole SSO process on the intranet of an imaginary COMPANY with an imaginary USER.
Process overview
- USER signs in to the COMPANY intranet
- USER tries to visit Verba web interface
- COMPANY intranet generates an SSO Registration request with a Security Token
- COMPANY intranet sends the request to Verba Media Repository
- Verba Media Repository verifies the request, registers Security Token and responds
- COMPANY intranet uses the Security Token to provide the USER with an SSO Login URL
- The user is logged in without repeated authentication
The same process described with more details
- USER signs in to the COMPANY intranet with their regular process (e.g. password, Windows authentication, biometrics, etc.)
- In the COMPANY intranet USER clicks on a link or tab that leads USER to the Verba web interface
- COMPANY intranet generates an SSO RegistrationHTTP request with required parameters:
- Verba Environment ID (applicable only to multi-tenant Verba systems)
- Verba User Name
- Globally Unique Security Token (GUID)
- Requested Expiration Date of the Security Token
- Current IP address of the USER
- COMPANY intranet sends the HTTP request to the Verba Media Repository
- Verba Media Repository verifies that the HTTP request comes from the COMPANY intranet based on IP address and registers the Security Token with expiration date and USER IP address, and replies to the COMPANY intranet with a status
- On successful status response the COMPANY intranet uses the Security Token to provide the USER with an SSO Login URL that allows login to the Verba web interface without further authentication
- The user is logged in without repeated authentication