One of the most common challenges when integrating cloud-based offerings with your company is identity federation. In this article, you will learn how to federate your company repository with IBM® SmartCloud® for Social Business using WebSphere® DataPower® to provide a single sign-on (SSO) service between different security domains.

Introduction
The number of inter-company agreements signed during the last few years has increased significantly. At the same time, companies are rapidly embracing cloud computing for business. IBM has integrated essential tools for social business in the cloud. SmartCloud for Social Business (hereafter called SmartCloud) provides a secure, reliable, flexible, and extensible way to provide your business the ability to work with people inside and outside of your organization.
A typical challenge of cloud-based applications is how users can be logged into your organization's systems and the cloud without the need to have to log in again, providing the end user the feeling of an integrated set of applications across the organization. This is known as identity federation. SmartCloud supports either Security Assertion Markup Language (SAML) 1.1 or SAML 2.0 implementations to exchange authentication and authorization assertions between security domains. In this article, we will implement a SAML 2.0 Browser/POST profile IdP to federate a test organization with SmartCloud.

Download document (pdf)