Professional Documents
Culture Documents
Security Assertion Markup Language (SAML) is an XML-based standard for exchanging authentication
data between a service provider (such as Web TimeSheet) and an identity provider. SAML allows users
to employ web browser single sign-on, and is typically used as an enterprise-level identity management
solution.
B. Set up IIS
1. Create a new IIS virtual directory pointing to the folder created in Step A.
Give the directory read and execute permissions, and name it. We recommend naming it SAML.
2. Create an IIS application called SAML. To do this:
In IIS 6.0, right-click the SAML directory and select Properties. On the Virtual Directory
tab, click the Create button located in the Application settings area. Select OK.
In IIS 7.0, right-click the SAML directory and select Convert to Application, and select
OK.
If you are using internal web server, it should use this format:
<add key="ServiceProviderURL"
value="http://YourWebTimesheetServerName:port/Timesheet/saml.ashx" />
E. Create Users
1. Create users in Web TimeSheet whose user names match their Windows user names.
2. Set each users Authentication Method to SAML in their user profile.
These users can log in to Web TimeSheet normally using this URL:
http://<YourSAMLComputerName>/SAML
In most cases, users will be automatically logged in to Web TimeSheet. However, some browsers
do not forward Windows credentials automatically, and others can be configured not to, so users
may still be prompted for their user name and password when logging in.