Application Name | Office 365 (ADFS - Form) |
Publisher | Microsoft |
Date Entered | 09/02/2014 |
Date Modified | |
webNetwork Version | 6.2.1.180 |
Delivery Method | Virtual server |
Configuration | Host Object
----------- Host Address : adfs.example-cloud.com Host Port : 443 Web Application Object ---------------------- Web App Type : HTTP(S) Virtual Server Virtual DNS Name : sw-o365.example-cloud.com Startup URL : /adfs/ls/?nossl=1&wreply=STAYHERE&wa=wsignout1.0 Rewrite Browser Cookies : Enable Internal Servers Require SSL : Enable Host Authority : Disabled Single Sign On -------------- Form Type : Client Form Name : loginForm Form Trigger : /adfs/ls/\?wa=wsignin1.0\&wtrealm=urn:federation:MicrosoftOnline\&wctx=bk%3D1407871978%26LoginOptions%3D3 Script : document.forms[0].submit(); Form Method : Post Form Inputs : Password : YOURPASSWORD UserName: YOURUSERNAME Redirect Form ------------- Form Type : Client Form Trigger : /adfs/ls/\?nossl=1\&wreply=STAYHERE\&wa=wsignout1.0 Script : var image = new Image(); image.src = "https://outlook.office365.com/owa/logoff.owa"; setTimeout( "location.href='sw-o365.example-cloud.com/adfs/ls/?wa=wsignin1.0&wtrealm=urn:federation:MicrosoftOnline&wctx=bk%3D1407871978%26LoginOptions%3D3';", 2000 ); |
Notes |
-Requires relay(s) to be using SSL
-Requires ADFS server SSO already setup with Office 365 -Requires the ADFS server to be setup for Forms Based Authentication -It may be necessary to setup smart links (http://community.office365.com/en-us/w/sso/using-smart-links-or-idp-initiated-authentication-with-office-365.aspx) -Due to the way the cookies are handled when logging out of Office 365, this webApp requires a two forms. The Startup URL points to a somewhat bogus URL, which the first form intercepts, redirecting the browser to the correct URL. The second form then authenticates the user. This configuration makes sure that when a user logs out of Office 365, their session cookies are deleted from the browser. That way another person is unable to access the user's Office 365 account, if the user does not close their browser after logging out of webNetwork. |