Home
Administrator Guides
Administrator's Guide
Administrator Guide
SAML 2.0 single sign-on
Unica Platform supports SAML 2.0 based single sign-on.
Behavior when SAML 2.0 single sign-on is implemented
The implementation of SAML 2.0 single sign-on in Unica has the following behavior.

Administrator Guides
- Administrator's Guide
  - Administrator Guide
    - Unica Platform features
      Unica Platform provides security, configuration, notification, and dashboard features for Unica products.
    - Licensing - overview
    - HCL Unica user account management
      You can manage the attributes of user accounts created using Unica Platform user interface, which we refer to as internal accounts. This is in contrast to external user accounts, which are imported from an external system such as an LDAP server or web access control system.
    - Security management
      Unica Platform supports roles and permissions to control user access to objects and features in Unica applications.
    - Configuration management
      When Unica is first installed, the Configuration page shows only the properties used to configure Unica Platform and some global configuration properties. When you install additional Unica applications, the properties used to configure these applications are registered with Unica Platform. These properties are then shown on the Configuration page, where you can set or modify their values.
    - Dashboard management
      Dashboards are configurable pages that contain information useful to groups of users who fill various roles within your company. The components that make up dashboards are called portlets. Dashboards can contain pre-defined portlets or portlets that you create.
    - The HCL Unica Scheduler
      The Unica Scheduler enables you to configure a process to run at intervals that you define.
    - SAML 2.0 based federated authentication
      Unica Platform implements a SAML 2.0 based Identity Provider (IdP) that enables a single sign-on federation among Unica products or between Unica products and third party applications.
    - SAML 2.0 single sign-on
      Unica Platform supports SAML 2.0 based single sign-on.
      - Behavior when SAML 2.0 single sign-on is implemented
        The implementation of SAML 2.0 single sign-on in Unica has the following behavior.
      - Configuration process roadmap: SAML 2.0 single sign-on
        Use this configuration process roadmap to scan the tasks required to implement SAML 2.0 single sign-on in Unica. Where applicable, the Task column provides links to the topics that describe the tasks in detail.
      - Setting up the metadata file
        Your IdP server generates a metadata file that contains configuration and integration details for SAML 2.0 single sign-on.
      - Setting SAML 2.0 configuration properties
        To configure SAML 2.0 single sign-on, set properties on the Configuration > Settings page.
      - Setting up a data source for SAML single sign-on
        Save the password of the key store file in a data source in Unica Platform.
      - Sample SAML 2.0 IdP assertion
        This section provides examples of the SAML 2.0 request and response.
      - Sample IdP metadata
        This section provides an example of the metadata file produced by the IdP server
    - Single sign-on between HCL Unica and IBM Digital Analytics
      If your organization uses IBM Digital Analytics, you can enable single sign-on between Digital Analytics and Unica.
    - Integration between HCL Unica and Windows Active Directory
      Unica Platform can be configured to integrate with Windows™ Active Directory server or another LDAP (Lightweight Directory Access Protocol) server. By integrating Unica with a directory server, you can maintain users and groups in one centralized location. Integration provides a flexible model for extending the enterprise authorization policies into Unica applications. Integration reduces support costs and the time needed to deploy an application in production.
    - Integration between HCL Unica and LDAP servers
      Unica Platform can be configured to integrate with Windows™ Active Directory server or another LDAP (Lightweight Directory Access Protocol) server. By integrating Unica with a directory server, you can maintain users and groups in one centralized location. Integration provides a flexible model for extending the enterprise authorization policies into Unica applications. Integration reduces support costs and the time needed to deploy an application in production.
    - Integration with web access control platforms
      Organizations use web access control platforms to consolidate their security systems, which provide a portal that regulates user access to web sites. This section provides an overview of Unica integration with web access control platforms.
    - Alert and notification management
      Unica Platform provides support for system alerts and user notifications sent by Unica products.
    - Implementation of one-way SSL
      This section describes one-way SSL in Unica.
    - Security framework for HCL Unica APIs
      Unica Platform provides the security framework for the APIs implemented by Unica products.
    - Data filter creation and management
      Data filters make it possible to restrict the customer data that an Unica user can view and work with in Unica applications. You can think of the data you secure with a data filter as a data set defined by the fields in your customer tables that you specify.
    - Audit event tracking in HCL Unica
      You can configure which audit events are tracked and assign a severity level to each tracked event.
    - The Unica Platform system log
      You should check the system log first if the Unica Platform application malfunctions. The system log is independent of the security audit information, which is stored in the system tables. While the system log tracks some of the same information contained in the security audit reports, it also contains information useful in troubleshooting Unica Platform.
    - Unica Platform utilities
      This section provides an overview of the Unica Platform utilities, including some details that apply to all the utilities and which are not included in the individual utility descriptions.
    - Unica Platform SQL scripts
      This section describes the SQL scripts provided with Unica Platform to perform various tasks relating to the Unica Platform system tables.
    - HCL Unica configuration properties
      This section describes the configuration properties found on the Settings & Configuration page.
    - Customization of stylesheets and images in the HCL Unica user interface
      You can customize the appearance of the user interface where most Unica product pages appear. By editing a cascading style sheet and providing your own graphics, you can change many of the images, fonts, and colors in the user interface.
- Configuration Properties Guide
- System Tables

Behavior when SAML 2.0 single sign-on is implemented

The implementation of SAML 2.0 single sign-on in Unica has the following behavior.

Logout

When logged-in users log out, they are redirected to the standard Unica logout page. A message instructs users to close the browser window to complete the log out process.

Session timeout

If logged-in users are idle for more than 30 minutes they are redirected to the standard Unica logout page. A message instructs users to close the browser window to complete the log out process.

This time out period can be configured in your application server.

Incorrect SAML configuration

If an error occurs due to incorrect SAML configuration when users attempt to log in, the users are redirected to an error page with the message "Login Failed: Bad Credential. Please close the browser window and try again."

User not provisioned in Platform but is a valid IDP user

When the Add authenticated users to Platform property is disabled, users who log in with credentials that are valid for the IdP server but who do not have a Unica Platform account are redirected to an error page with the message "Login Failed: Bad Credential. Please close the browser window and try again."

User exists in both IDP and Unica Platform but their Unica Platform password has expired or been reset

When user's password is expired or reset in Unica Platform, the user is redirected to an error page with the message "Login Failed: Bad Credential. Please close the browser window and try again."

Have feedback?
Google Analytics is used to store comments and ratings. To provide a comment or rating for a topic, click Accept All Cookies or Allow All in Cookie Preferences in the footer of this page.