SSO using SAML between MWS Portlets and a Webapplication

I have a problem of authentication between the MWS and a webApplication for which the Token of Exchange is SAML. Is there a way that I can generate the SAML Tokens from MWS for a user. The scenario is I use a Frame Portlet and render the content by calling the webapplication widget URL… So the widgets need to be authenticated with the SAML tokens that I pass from the MWS Portlets.

Thanks for any help.

Hi Chandra,
have you found any solution to this? I’d be grateful to hear how you’ve done it.
I’m thinking of using webMethod’s SAML Token Service for creating the user’s SAML token.

As this post had more than 3,000 views there might be quite a high demand for a solution (paper).

Best regards,

I hope by now you guys would have got it done but still posting this solution so that other people can be benefited.
Please look in to the solution and correct it if i it is wrong.

For SSO using SAML token there are following things which are necessary.

–>> your web application server should also support SAML assertion and both of the systems (MWS and web application server) should use same directory server for authenticating user.

you need to follow below mentioned steps if above mentioned condition satisfied.

  1. In your portlet binding view click on ‘Expert Properties’ then go to webservice which your portlet will be accessing at runtime. Select the ‘authentication method’ inside ‘authentication info’ from the property view choose the authentication method as SAML. Save and deploy your portlet to MWS.

  2. Configure following SAML url in your web server.

after above mentioned configuration SSO should work.