Hello there!

Need Help? We are right here!

support
miniOrange Email Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com

Single Sign On (SSO) with 2-factor authentication for Sugar CRM
miniOrange provides a ready to use single sign-on solution with 2-factor authentication for SugarCRM for Business. This single sign-on solution ensures that you are ready to roll out secure access to SugarCRM for Business to your employees within minutes.

Note : The information contained on this page does not create a joint venture, partnership, agency or other form of association, or an express or implied license grant by either party to the other under any patent, trademark, copyright, trade secret or other intellectual property right.

SugarCRM

miniOrange provides secure access to SugarCRM for enterprises and full control over access of application. Single Sign On (SSO) into SugarCRM with one set of login credentials.

Follow the Step-by-Step Guide given below for SugarCRM Single Sign On (SSO) with 2 factor authentication

Step 1: Configure SSO for SugarCRM

  1. Login to miniOrange Admin Console.
  2. Go to Apps >> Manage Apps . Click Configure Apps button.
  3. Click on SAML tab. Select SugarCRM and click Add App button.


  4. Make sure the SP Entity ID or Issuer is in the format: {sugarcrm_url}/index.php?module=Users&action=Authenticate&dataOnly=1&platform=base where {sugarcrm_url} is your SugarCRM Domain URL.
    For instance, https://xlnqkm3846.trial.sugarcrm.eu/index.php?module=Users&action=Authenticate&dataOnly=1&platform=base.
  5. Make sure the ACS URL is in the format: {sugarcrm_url}/index.php?module=Users&action=Authenticate&dataOnly=1&platform=base where {sugarcrm_url} is your SugarCRM Domain URL.
    For instance, https://xlnqkm3846.trial.sugarcrm.eu/index.php?module=Users&action=Authenticate&platform=base
  6. Leave the Attributes section empty.
  7. In the Add Policy tab,


  8. Select a Group Name from dropdown - the group for which you want to add SugarCRM policy.
  9. Give a policy name for SugarCRM in Policy Name field.
  10. Select the First Factor Type for authentication.
  11. Enable Second Factor for authentication.
  12. Click on Save to configure SugarCRM.
  13. Click on Download Certificate link to download the certificate which will be required later.


  14. Login to your SugarCRM domain as the Account Administrator.
  15. Go to Admin and click on Password Management.


  16. Disable the Forgot Password option.
  17. Check Enable SAML Authentication and enter the details as shown:

  18. Login URLhttps://login.xecurify.com/moas/broker/login/saml_login/{your_customer_id}
    X509 CertificateOpen the downloaded certificate in Notepad and copy the content here.
  19. Click on Save to save the SAML settings.

Step 2: Onboard users into our system.

  1. Login to miniOrange Admin Console.
  2. Go to Policies >> App Authentication Policy.
  3. Now click on Onboard users into our system from View Policy Tab.
  4. Download sample csv format from our console and create a CSV file containing your users in this format.


  5. Upload your CSV in our console via Bulk Upload.
  6. After uploading the CSV file successfully, you will see a success message.
  7. From Users/Groups menu, select Manage Users/Groups and go to On Boarding Status. Select users to send activation mail and click on send activation mail. An activation mail will be sent to the selected users.



Step 3: Register users into our system (End Users)

  1. Sign In to your mail and click on registration link that is valid only for 5 days. You will be redirected to our registration page.
  2. Configure your basic details.


  3. Configure any strong authentication method.


  4. Configure KBA (Security Questions) as your fallback method, in case you lost your phone this will get invoked and save your details.


  5. After successful registration, you will see a registration successful message.

Step 4: Create an identity source

  1. Login to miniOrange Admin Console.
  2. Go to Identity Sources >> Add Identity Source.
  3. Configure the identity source of your choice and save.

Step 5: Configure miniOrange in the Identity Source

  1. Login to your external IdP console.
  2. Configure https://login.xecurify.com/moas/broker/login/saml_login/{your_customer_id} in your external IdP console.

Step 6: Now sign in to your SugarCRM account with miniOrange IdP for Single Sign On (SSO)


Your choice of second factor

miniOrange authentication service has 15+ authentication methods.

You can choose from any of the above authentication methods to augment your password based authentication. miniOrange authentication service works with all phone types, from landlines to smart-phone platforms. In the simplest case, users just answer a phone call and press a button to authenticate. miniOrange authentication service works internationally, and has customers authenticating from many countries around the world.



For further details refer :
https://support.sugarcrm.com/02_Documentation/01_Sugar_Editions/01_Sugar_Ultimate/Sugar_Ultimate_6.7/Administration_Guide/033_Password_Management/

Business trial for free

If you don't find what you are looking for, please contact us at info@miniorange.com or call us at +1 978 658 9387 to find an answer to your question about SugarCRM Single Sign On (SSO).


Watch the videos to learn more. Watch Demo

We offer Security Solutions of Single Sign-On, Two Factor Authentication, Fraud Prevention and much more.

Please call us at +1978 658 9387 (US), +91 77966 99612 (India) or email us at info@xecurify.com