NetSuite Changelog
CommerceSecuritySuiteCommerceIntegration

SAML SSO Configuration for Web Stores in NetSuite

SAML SSO configuration enables secure single sign-on for web stores, streamlining user authentication through identity providers.

·2 min read·View Oracle Docs

TL;DR Opening

SAML SSO configuration allows users to authenticate to web stores securely through their identity providers (IdPs). This feature simplifies the login process for customers, ensuring a smooth experience and enhancing security.

How to Configure SAML SSO for Web Stores

Configuring SAML SSO for web stores in NetSuite involves several key steps that facilitate the integration with your identity provider. Here’s a breakdown of the essential configurations:

  1. Identity Provider Setup: Configure NetSuite for SAML SSO with your IdP. Share necessary information from the NetSuite Service Provider Metadata file with your IdP, following their specific guidelines.
    • Required SAML Attributes: Ensure that you provide the required site ID and account ID attributes. These are critical for the functionality of SSO.
  2. Logout and Login Landing Pages:
    • Enter a URL in the Logout Landing Page field to direct users after logging out.
    • The Landing Page After Login field is optional. If filled, it should be a secure URL if your web store employs a secure Single Domain configuration.
  3. Primary Authentication Method:
    • The Primary Authentication Method box determines how users log in. If checked, users are redirected to the IdP login page when their session times out. If unchecked, users will need to access NetSuite directly.
    • Be aware that checking this box results in users being redirected to the IdP when a specific URL structure is followed.
  4. Set Up Identity Provider:
    • In the Set Up Identity Provider section, either upload your IdP's metadata file or provide its URL to complete the configuration.

Important Notes

  • Ensure that the Landing Page After Login does not play a role in the SP-initiated flow.
  • The setup process may vary based on individual IdP configurations — always refer to your IdP’s documentation for specific instructions.

Who This Affects

  • Administrators: Responsible for configuring SAML settings in NetSuite.
  • Developers: May need to customize aspects of the SSO integration.
  • End Users: Benefit from a seamless single sign-on experience when accessing web stores.

Key Takeaways

  • Configure SAML SSO for enhanced security and convenient user access.
  • Both IdP-initiated and SP-initiated SSO flows are supported.
  • Provide necessary SAML attributes to your IdP.
  • Understand the implications of the Primary Authentication Method setting.
  • Reference your IdP's documentation for specific configuration steps.

Source: This article is based on Oracle's official NetSuite documentation.

Frequently Asked Questions (4)

What SAML attributes are required for configuring SSO with NetSuite?
You must provide the required site ID and account ID attributes to ensure the functionality of SAML SSO for web stores.
How does enabling the Primary Authentication Method affect user login?
When the Primary Authentication Method box is checked, users are redirected to the IdP login page when their session times out, provided that a specific URL structure is followed.
Do I need a secure URL for the Landing Page After Login in a secure Single Domain setup?
Yes, if your web store employs a secure Single Domain configuration, it is advisable to use a secure URL for the Landing Page After Login field.
Is the Landing Page After Login URL used in SP-initiated SSO flow?
No, ensure that the Landing Page After Login does not play a role in the SP-initiated flow.
Source: SAML SSO Configuration for Web Stores Oracle NetSuite Help Center. This article was generated from official Oracle documentation and enriched with additional context and best practices.

Was this article helpful?

More in Commerce

View all Commerce articles →