Freshdesk presents you the easiest solution to manage your customer queries in the most efficient way possible. If you are looking for achieving this using a product with top-notch features, and a dedicated team to guide you hassle-free through this journey - you have arrived at the right destination!
miniOrange provides secure access to Freshdesk for enterprises and full control over access to the application. Single Sign On (SSO) into Freshdesk with one set of login credentials.
Freshdesk can be configured through SAML Single Sign On for your users. You do not have to provide separate login credentials for Freshdesk. The authentication of the user is done by any SAML provider you configure on your side and the user attributes like Email address are sent back to Freshdesk.
Follow the Step-by-Step Guide given below for Freshdesk Single Sign On (SSO)
Step 1: Configure Single Sign On (SSO) Settings in Freshdesk
- Login to miniOrange Admin Console.
- Go to Apps >> Manage Apps. Click Configure Apps button.
- Click on SAML tab. Select FreshDesk.
- Enter the SP Entity ID as https://your_domain.freshdesk.com/login/saml.
- Enter the ACS URL as https://your_domain.freshdesk.com/login/saml
- Enter the Single Logout URL as https://yourcompany.freshdesk.com/support/home.
- You can add additional attributes using add attribute option.
- Go to the Add Policy and select DEFAULT from the Group Name dropdown.
- Now enter the Freshdesk in the Policy Name field.
- Select PASSWORD from the First Factor Type dropdown.
- Click on Save to configure Freshdesk.
- Click on Metadata link to download the metadata which will be required later. Click on Link
to see the IDP initiated SSO link for Freshdesk.
- Keep SAML Login URL, SAML Logout URL and click on the Download Certificate button which you will require in Step 2.
Step 2: Configure Freshdesk setting for miniOrange
- Login to your Freshdesk domain.
- Go to the Admin tab and click on Security.
- Click on the toggle to turn ON Single Sign On (SSO).
- Enter the details as shown:
|SAML Login URL||Enter SAML Login URL that you got from Step 1.|
|Logout URL||Enter SAML Logout URL that you got from Step 1.|
|Security Certificate Fingerprint||Copy the Thumbprint of the downloaded certificate.|
- Open the certificate that was downloaded earlier.
- Go to Details.
- In the Field column, select Thumbprint.
- Copy the Thumbprint that opens in the pane by pressing CTRL+C (Right-Click won't work!).
- Paste the Thumbprint in the Certificate Fingerprint.
- Click the Save to save the Single Sign On (SSO) SAML settings.
Step 3: Onboard users into our system.
- Click on Users >> Add User.
- Here, fill the user details without the password and then click on the Create User button.
- Click on On Boarding Status tab. Check the email, with the registered e-mail id and select action Send Activation Mail with Password Reset Link from Select Action dropdown list and then click on Apply button.
- Now, Open your email id. Open the mail you get from miniOrange and then click on the link to set your account password.
- On the next screen, enter the password and confirm password and then click on the Reset Password button.
- Now, you can log in into miniOrange account by entering your credentials.
Step 4: Login to miniOrange Account
- Go to miniOrange dashboard and select the User Dashboard from the right side menu.
- Click on Freshdesk application which you added, to verify your sso configuration.
Using Two Factor Authentication for Freshdesk
The most practical way to strengthen authentication is to require a second factor after the username/password stage. Since a password is something that a user knows, ensuring that the user also has something or using biometrics thwarts attackers that steal or gain access to passwords.
Traditional two-factor authentication solutions use hardware tokens (or "fobs") that users carry on their keychains. These tokens generate one-time passwords for the second stage of the login process. However, hardware tokens can cost up to $40 each. It takes time and effort to distribute them, tracks who has which one, and replace them when they break. They're easy to lose, hard to use, and users consistently report high levels of frustration with token-based systems.
For Further Details Refer:
Single Sign On (SSO) For Freshdesk Using SAML
Freshdesk Single Sign On (SSO)