Configure SSO in Alfresco products - Configure SSO in Alfresco products - Alfresco - Alfresco Content Connector for Salesforce - Alfresco/Alfresco-Content-Connector-for-Salesforce/2.2/Alfresco-Content-Connector-for-Salesforce/Alfresco-Content-Connector-for-Salesforce/Configure-Salesforce-Connector/Configure-SSO-in-Alfresco-products - 2.2

To configure Single Sign On (SSO) between Content Services and the Salesforce Connector, you must add your Identity Service URL to JAVA_OPTS, and also configure your X-Frame-Options and Content Security Policy in the Identity Service.

Ensure you have the prerequisites installed and configured first.

1. Stop Alfresco Content Services.

2. Set JAVA_OPTS=%JAVA_OPTS% -Dsfdc.config.trustedOrigins=<Identity Service URL> in:

   For Linux based users: <TOMCAT_HOME>/bin/catalina.sh

   For Microsoft Windows users: <TOMCAT_HOME>/bin/catalina.bat

3. Navigate to your Identity Service and log in as an Administrator.

4. Log in to the Administration Console.

5. Select the Alfresco realm from the drop list on the top left.

6. Go to Realm Settings > Security Defenses tab.

7. Add ALLOW-FROM <Your Salesforce URL> to the X-Frame-Options field.

8. Add frame-src 'self' <Your Salesforce URL> to the Content-Security-Policy field.

   Note

   <Your Salesforce URL> can take two different forms:

   • For the Classic view, the URL will take the form visual.force.com.
   • For the Lightning view, the URL will take the form lightning.force.com.