Cisco Cisco TelePresence Management Suite (TMS) Version 15
Example: exampletms
n
SAML Issuer (SP ID)
This refers to the Service Provider, which is WebEx. This value must be determined by the WebEx team.
Contact the WebEx account team for this information.
Example: https://examplesso.webex.com/examplesso
n
AuthnContextClassRef
This is the authentication context. The IdP authenticates the user in different contexts, e.g., X509 cert,
Smart card, IWA, username/password).
Use the default value automatically provided by TMS.
Configuring SSO in Cisco TMS
To configure SSO in Cisco TMS, do the following:
1. Ensure the WebEx site on which you want to enable SSO has been created in Cisco TMS.
for details.
2. Generate a certificate to secure the connection between Cisco TMS and the WebEx site.
3. Enable Partner Delegated Authentication on the WebEx site.
for details.
4. Enable SSO in Cisco TMS.
Generating a Certificate for WebEx
WebEx requires that a certificate pair (public certificate and private key) be used to authenticate Cisco TMS
to the WebEx cloud.
Certificate pair requirements:
n
Public certificate must be in .cer or .crt format - to send to the WebEx Cloud Services team
n
Certificate and private key bundled in a PKCS12-formatted file - for upload to Cisco TMS
You can generate a new certificate or use an existing one, such as the one used to enable HTTPS on your
Cisco TMS server.
Using an Existing Certificate Signed by a Trusted Authority
If you currently use a certificate signed by a trusted authority, Cisco recommends using the existing
certificate and key pair for your WebEx configuration. How you proceed is determined by if the private key is
Cisco Collaboration Meeting Rooms (CMR) Hybrid Configuration Guide (TMS 14.6 - WebEx WBS29.11)
Page 158 of 254
Configuring Cisco TelePresence Management Suite
Configuring Single Sign On in Cisco TMS