AgilePoint NX platform is pretty flexible when it comes to choosing identity provider for the platform. It supports the concept of Bring Your Own Identity where customers are free to choose from any of the supported identity providers. Here is a list of authentication providers supported as of today. https://documentation.agilepoint.com/8010/admin/cloudportalThirdPartyAuthentication.html As you can see, there…
Category: Authentication
Generic OAuth2 Token for REST Connector
In this video, we are going to look at how to configure the new generic OAuth2 token which can then be used with the generic REST connector in forms as well as process model. However, before that, lets first understand the use case as it is not very common. As you might already know, AgilePoint…
Support Multi Factor Authentication for Office 365 Access Token
Multi-factor authentication is a process where a user is prompted during the sign-in process for an additional form of identification, such as to enter a code on their cellphone or to provide a fingerprint scan. If you only use a password to authenticate a user, it leaves an insecure vector for attack. If the password…
SAML2 Vs OAuth2/OpenID Connect – What is Preferred?
AgilePoint NX platform is pretty flexible when it comes to choosing identity provider for the platform. It supports the concept of Bring Your Own Identity where customers are free to choose from any of the supported identity providers listed in the documentation. https://documentation.agilepoint.com/10/admin/cloudportalThirdPartyAuthentication.html As you can see, there is a wide variety of industry standard…
AADSTS90093: App is requesting permissions which you are not authorized to grant
Symptom: If you are trying to execute a login flow for an application in Windows Azure AD which essentially lets it your application obtain an access token and refresh token for your user id from Windows Azure AD, you might see the following error message on the Microsoft login screen. Resolution: The reason behind this is…
AADSTS90093: This operation can only be performed by an administrator
Symptom: If you are trying to execute an admin consent flow for an application in Windows Azure AD which essentially lets it your application obtain an access token and refresh token on behalf of user from Windows Azure AD, you might see the following error message on the Microsoft login screen. Resolution: The reason behind…
ADFS Error: There was an error in enabling endpoints of Federation Service.
Symptom: After configuration AD FS if you tried to connect to the endpoint for e.g. “……adfs/services/trust/13/usernamemixed” and you get following error message “HTTP Error 503. The service is unavailable.”. However if you see the endpoint is enabled in AD FS Reason: If you look at the AD FS event log on the AD FS machine you…
AgilePoint support for Windows Azure AD federated through OnPremises ADFS
If your Office 365/CRM Online environment is already protected by OnPrem ADFS, AgilePoint portal and server supports logging in with same Microsoft Office 365/Windows Azure AD account using OAuth2 token. When your Office 365 account is protected by OnPrem AD using ADFS, what Microsoft does behind the scene is that it protects all its Online…
Bypass login screen if user is already logged into Office 365 or Salesforce
Often times task assignment emails are sent to users with a link to directly open the task form. This can be achieved by following instructions in the following KB article Create Task Link – Sample However one of the things high on the wish list of the users is to have a way of bypassing…
Single Sign On for AgilePoint NX OnPremises
A JavaScript based system cannot utilize windows authentication directly in the browser. Windows Authentication is not an option in a client side form technology as you cannot obtain windows users username and password in JavaScript. That is only going to work on server side technology like ASP.Net. Also even for ASP.Net it won’t work on browser…
How to get Hybrid SharePoint to work with AgilePoint NX
Creating a SharePoint hybrid environment is about leveraging both SharePoint Server OnPremises and Office 365 SharePoint Online to achieve your business goals. A hybrid environment enables enterprise users to be connected from almost anywhere to the resources and content they need. A hybrid solution can help your company get started in the cloud, taking a…
Bypass Multi Factor Authentication in Office 365
This article has been replaced with steps mentioned in a newer blog post on this topic which shows how to work with MFA enabled Office 365. Support Multi Factor Authentication for Office 365 Access Token However if you wish to whitelist based on IP address you can still reference the options mentioned in the following…
User Sync from Windows Azure AD to AgilePoint NX
There are 4 ways of registering user from Windows Azure AD to AgilePoint NX. Option 1: You can enable WAAD Authentication and set “AutoSync” to ‘Yes’. So whenever an Office365 user login to AgilePoint NX Portal, the user profile will be automatically synced to AgilePoint. Please note: In AgilePoint NX On-Demand, this is only available…
Windows Azure Active Directory Login Error – AADSTS50020
Windows Azure Active Directory message can be quite confusing for e.g. error code AADSTS50020 This might show up when user clicks the Sign in with ‘Windows Azure Active Directory’ in the AgilePoint NX-portal, the page is redirected to WAAD login. User is then able to sign-in using his external ID (non-organizational work/school user). At this point ,…
Does AgilePoint NX Support Windows Azure B2C?
Before we start the discussion, using Windows Azure AD itself which have your internal users itself is fine and that is what AgilePoint NX has been doing for years now so the rest of write up is only for Azure AD B2C. With that out of the way here is more information on Azure AD B2C,…
AgilePoint NX Support for Active Directory Federation Service
Windows Azure Active Directory has become an integral part of the Microsoft cloud ecosystem and it does provide a very robust single sign-on solution for cloud. Most of the enterprise clients federate their OnPremises AD for cloud solutions using ADFS. As part of the customer implementations, question comes up pretty often that can AgilePoint NX…