SSO Frequently Asked Questions (FAQs)

The following are some frequently asked questions for SSO:

1.    Question: An existing customer has primary email address in Personify and SSO account. If the primary email address is changed, what happens to the SSO email address?
Answer: If the primary email address is changed for the customer, then the SSO email address is also updated.

2.    Question: An existing customer has primary email address in Personify and SSO account. If the the SSO email address is changed, what happens in Personify?
Answer: If the SSO email address is changed, the system updates the record in CUSTOMER table of SSO database but primary email address remains unchanged.

3.    Question: From the web, if a customer selects to email their password, is the system looking at primary or SSO to identify the account/login to send the message?  
Answer: The system looks at the SSO email address to email the password. SSO email address is used to identify the account/log in.

4.    Question: An existing customer has a primary email address and SSO email address. If a different customer's SSO email address is changed to that of this customers, we now have two customers in SSO with the same email address. From the web, the customer selects forgot my password and the system emails a link. Which account gets emailed?
Answer: The password reset link will be for both the customer accounts.

5.    Question: If I want to find all customers who share the same email in SSO, so that I can rectify, how do I do that?
Answer: You will have to query the CUSTOMER table in SSO database.

6.    Question: Existing customers A and B have login IDs A and B in SSO.  I ran the dedup process (CUS590 and CUS595) so that B remains. What happens to the SSO account of customer A?
Answer: The SSO account of A will be deleted.

7.    Question: If I want to use the login of one customer for a different customer, how would I do that?
Answer: You will have to assign the same username to some other customer by going to CRM360 and updating the web credentials for the customer.

8.    Question: What is causing Personify to not allow me to create web credentials for new constituents?

Answer: This is caused by broken communication between SMTP and Personify. You will need to update the following locations where SMTP is mentioned:

·            Services\Application\Personify.Server.Applicationserver.exe.config

·            Web\SSO\web.config

·            Services\Notification\ConfigureNotificationService (this is a GUI that you change the settings)

Once complete, you will need to restart your App Service and Notification Service. SSO will recycle when web config is changed. It's also suggested that the DNN setting be changed if it is being used.

For additional information, see Setting the SMTP Server and Port and Installing the SSO Application and Web Service.

9.    Question: How can I change the email that is sent to users to reset their password?
Answer: Please see SSO Resource File for User Messages..

10.  Question: How can I change the wording on the SSO Login screen?
Answer: Please see Login Templates for SSO.

11.  Question: How can I configure the number of login attempts allowed before the user will be locked, as well as the number in minutes in which the user is locked?
Answer: Please see Step 3: Modifying the Web.Config File.

12.  Question: While accessing SSO from the mobile device, I still see the default template, not the mobile template. What else needs to be done?
Answer: You have to update the browser file definitions on your web server. The .browser files are located in the following folder:
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config\Browsers of the web server.

The .browser file contains a regular expression for identifying the user agent. Then, in the capabilities section, you have the flag isMobileDevice. The following is the .browser file for iPhone:

<browsers>

<!-- Mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420+ (KHTML, like Gecko) Version/3.0 Mobile/1A543a Safari/419.3  -->

<gateway id="IPhone" parentID="Safari">

<identification>

<userAgent match="iPhone" />

</identification>


<capabilities>

<capability name="mobileDeviceModel"               value="IPhone" />

<capability name="mobileDeviceManufacturer"        value="Apple" />

<capability name="isMobileDevice"                  value="true" />

<capability name="canInitiateVoiceCall"            value="true" />

</capabilities>

</gateway>

</browsers>