Understanding Single Sign-On in Workfront

Although Workfront supports the integration with a single sign-on system, it is outside of the scope of Workfront Support and the Workfront Customer Support team to assist in the configuration of your internal authentication system. 

This section provides an overview of Single Sign-On in Workfront. 

Understanding Single Sign-On in Workfront

Most organizations utilize multiple online applications that require a user name and password to access. It is often difficult for a user to remember all of the different names and passwords, especially when the applications require password resets at different intervals.

System administrators could spend several hours setting up new users, managing forgotten passwords, deactivating users, and so forth, all across multiple applications.

Workfront provides a centrally managed Single Sign-On (SSO) configuration that easily integrates Workfront with your existing corporate SSO solution. SSO is easy to set up and manage, and is available to both OnDemand and OnPremise Enterprise customers.

In order to use the SSO functionality in Workfront, your organization needs to setup an SSO application, such as LDAP or Active Directory. You can then configure Workfront so that it can communicate with your SSO solution.

Federated solutions allow users to log in to all their applications by entering their user name and password in a centralized login portal.

Configuring your Firewall

When using Active Directory and LDAP, Workfront initiates a connection to your server on the specified port.

If you subscribe to Workfront on-demand, and if you have configured your firewall or mail server in such a way as to allow access only to specific vendors, you need to add certain Workfront IP addresses to your firewall whitelist, as described in "Configuring Your Firewall."

Configuring Single Sign-On 

Workfront integrates with the following SSO solutions:

This article last updated on 2019-01-17 16:56:11 UTC