Setting Up Encryption

Plutora supports Single Sign On (SSO), a session/user authentication process that allows users to enter one name and password to access multiple applications.

Set Up Encryption

To set up SSO encryption:

  1. Type the following command into PowerShell v5.1 to create a certificate:
    1. PS C:WINDOWSsystem32> New-SelfSignedCertificate -Type SSLServerAuthentication -Provider “Microsoft Strong Cryptographic Provider” -DnsName “demo.plutora.co” -KeyUsage DigitalSignature -KeyAlgorithm RSA -KeyLength 2048 -CertStoreLocation “Cert:CurrentUserMy” -KeySpec KeyExchange -FriendlyName “demo.plutora.co”
       DnsName “demo.plutora.co” and -FriendlyName “demo.plutora.co” should be equal address of site. 
      Windows PowerShell
  2. Export the certificate with the Yes, export the private key radio button selected.
    Export Certificate
  3. Export the public key and send to the owner of the Federation service.
    The Federation service will use our public key to encrypt responses.
  4. Record the Federation Service URL.
  5. Enable SSO in Plutora:

    1. Go to Settings > Customization > Login Settings in Plutora.
    2. Click to select the Encrypt SSO checkbox.
    3. Click Upload SSO Certificate.
    4. Select the saved certificate and click Open or Upload.
    5. Click to select the Sign SSO request checkbox.
    6. Type the Federation Service URL.
    7. Click Submit.
  6. To work correctly, the Federation Service should return this attribute:
    1. <saml:NameID Format=”urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress”>user@email.com</saml:NameID>
    2. <saml:Attribute Name=”Given-name” NameFormat=”http://schemas.microsoft.com/LiveID/Federation/2008/05″>     <saml:AttributeValue xsi:type=”xs:string” xmlns:xs=”http://www.w3.org/2001/XMLSchema” xmlns:xsi=”http://www.w3.org/2001/XMLSchema-instance”> Given-name </saml:AttributeValue>   </saml:Attribute>
    3. <saml:Attribute Name=”Surname” NameFormat=”http://schemas.microsoft.com/LiveID/Federation/2008/05″>     <saml:AttributeValue xsi:type=”xs:string” xmlns:xs=”http://www.w3.org/2001/XMLSchema” xmlns:xsi=”http://www.w3.org/2001/XMLSchema-instance”> Surname </saml:AttributeValue>   </saml:Attribute>

 

Back to the top arrow

Be the first to find out about new features. Subscribe to the Release Notes email. Subscribe Now
Updated on October 15, 2021

Was this article helpful?

Related Articles