Introducing Nextware’s Cumulus SSO Integration

Introducing Nextware’s Cumulus SSO Integration https://www.nextwaretech.com/wp-content/uploads/2015-12-1-Single-Sign-On-SSO-Integration-for-Canto-Cumulus-1024x683.jpg 1024 683 Nextware Technologies Nextware Technologies https://www.nextwaretech.com/wp-content/uploads/2015-12-1-Single-Sign-On-SSO-Integration-for-Canto-Cumulus-1024x683.jpg October 17, 2016 June 14, 2017

Our most popular DAM integration, the Nextware Cumulus Single Sign-on (SSO) Integration, allows endusers already logged into their workstations to seamlessly be logged into any of Canto Cumulus’ web interfaces, including Portals, Cumulus Web Client (CWC) and Sites, for Cumulus versions 9.2.x and later. We decided to use PingOne acting as the SAML service provider endpoint, but our integration is flexible to also support other scenarios such as waffle Tomcat request user or AES encrypt / decrypt from Sharepoint and WordPress, to name just two. Soon we will also add support for SAML 2.x for any system.

The following diagram illustrates the complete integration in an AWS environment, but any other environment is possible, too. It endusers to simply click on a button or link and immediately be connected to Cumulus web interfaces without having to log in again.

This SSO integration is highly secure, as it validates the user details twice, once customer-side and a second time between Cumulus/AWS and PingOne. Furthermore, it still allows all other, regular Cumulus authentication options to be employed in parallel. That includes built-in users and AD-authenticated users, as the custom SSO Authenticator module is simply added as another Cumulus authentication module, but does not replace the existing Cumulus authentication modules. This gives customers a lot of flexibility to create mixed authentication scenarios. In fact, our particular customer uses all three authentication options:

Internal users connect via SSO
External agencies (not pictured in the diagram) connect via an AWS-hosted AD
Certain technical Cumulus users (like RoboFlow) connect as built-in users

So how does this SSO integration work?

A SAML token generated by our client’s federated service includes a re-direct URL.
Upon authentication completion, the return token (incl. all user metadata needed to verify the SAML token) is re-directed to the respective Cumulus web interface.
This data is transferred to the Cumulus Web Server as part of the login data.
The Cumulus Web Server connects to the PingOne server to verify the token.
Once verified, PingOne returns a SAML token with details (valid/not valid).
The Cumulus Web Server does a “Connect to Cumulus App Server” and posts a XML/JSON structure that the Cumulus App Server parses to authorize the user.
The Cumulus Server assigns user metadata and matches groups with roles based on the posted XML/JSON.

This only required very few integration parts which can easily be adapted to any future release of Cumulus, including:

A Cumulus Web Server “Token Handling Customization” that can be used to trigger a “Connect to Cumulus App Server” with PingOne’s SAML token handling.
A Cumulus App Server “Authenticator Customization” that will understand the XML/JSON structure posted by the Cumulus Web Server.

This integration is extremely flexible and can be adapted to fit additional requirements. If you are interested in this or other DAM customizations and/or integrations, please get in touch with us today.

Pricing

Base Price: US$ 7,995
Initial setup and configuration (10 hours @ US$ 200 per hour): $2,000
Total: US$ 9,995
Training, Upgrades and Support not included (see below)

System Requirements

For Canto Cumulus Enterprise solutions only
Available for Sites, Cumulus Web Client and Portals
Available for Cumulus 9.2.x and later

Maintenance Options

Ad-Hoc Maintenance
- Incident Technical Support, Training or Upgrades (to adapt integration to newer versions of Cumulus)
- Cost: $200/hour
Maintenance Agreement
- 1 year of Technical Support and Free Upgrades, Cost: 36% of Base Price/year = $US 2,878
- This includes:
  - Incident Technical Support
  - Free Access to the latest version of the Nextware Cumulus SSO Integration (to make it work with the your latest and current version of Cumulus)
- Not included:
  - Extra Training
  - Professional Services related to upgrades or configurations beyond the initial setup & configuration

Nextware Technologies

5.0

Based on 5 reviews

review us on

Martin Skinner

06:55 03 Nov 17

Our mobile app development project with Nextware Technologies went very smooth and they did a very good job developing... our iOS app. Having worked with quite a number of mobile app development companies in the past, we can see how Nextware stands out in the quality of their services, If you are looking for an app development company in the LA area, go for Nextware Technologies.read more

Jon Anderson

09:41 03 Oct 17

I'd go ahead and say that they are the best mobile app development company in Los Angeles to work with! We came to... Nextware Technologies with an idea of what we wanted from our mobile application without much insights into how to make it a reality. Nextware had the right bunch of experienced professionals in web and mobile app development as well as people who can give good insights on the market. If it weren’t for for them we wouldn’t have realized how important it is to match the quality of our final product with hitting the right market at the right opportunity. Overall, we are happy.read more

Weiland Dealers

15:23 20 Jan 17

We have been working with Nextware Technologies for a few years now and have been very impressed with their services. ... Our main contact has been Shawn and he has always gone above and beyond to get us our requests in a timely manner and is very easy to work with. Great people, great output! Thanks for all that you do!read more

Kimia Moini

00:30 13 Dec 16

The team is incredibly friendly and helpful. They are always very responsive and I enjoy working with them. Thank you... Nextware for helping us out so many times and always doing a great job.read more

PSC Analytics

19:49 22 Sep 16

True masters of their craft, Nextware Technologies has a unique gift for understanding the shared vision of their... client’s desired end result. The ability to listen, envision, plan, and execute effectively is the very definition of success in business-to-business solutions. Nextware Technologies’ superb ability to communicate and strategize made working with them a seamless process.read more

See All Reviews

Introducing Nextware’s Cumulus SSO Integration

Pricing

System Requirements

Maintenance Options

You might also like

Automated Softerra Adaxes User Provisioning & Help Desk Web Interface

Nextware Implementation of Digital Asset Management Web Portal for Global NGO

AWS Video Conversion, Streaming & Delivery Cloud for Canto Cumulus