How to configure Single Sign on using Azure Active Directory (SAML2.0)

by | Dec 1, 2022

How to configure single sign-on using Azure AD (SAML2.0)

This guide will walk you through a standard SSO integration with Azure Active Directory as the Identity Provider (IdP) and ITM Platform as the Service Provider (Sdp). Before proceeding, we advise you to get familiar with the Single Sign-On process in ITM Platform.

Azure configuration

In your Azure portal, search for App Registrations and click on Create new app registration, or edit an existing one

Input a Name, and choose Web as the redirect URL, adding https://app.itmplatform.com/WebService/SSO.asmx/Auth 

At this point, your application is generated. Now, Generate an Application ID URI by clicking on Add an Application ID:

Click on set.

Accept the suggested URI or set your own, and save:

Click on Redirect URIs

Add https://app.itmplatform.com/ITM.Web/WebService/SSO.asmx/SignOut to the front-channel logout URL and save

Copy the previously generated Application ID URI, and the SAML-P sign-on endpoint and SAML-P sign-out endpoint. To access all your endpoints, click on the Endpoints button of your registered app.

By now, you should have 

  • Application ID URI
  • SAML-P sign-out endpoint
  • SAML-P sign-out endpoint

ITM Platform configuration

On the left menu, go to CONFIGURATION > ORGANIZATION > Company Settings. Scroll down to “Single Sign-On (SSO) Configuration”

  • Tick “Enable SSO”
  • We don’t recommend ticking “Force SSO for all users” until you have tested all works fine. Otherwise, you may be locked out. If this happens, please get in touch with support@itmplatform.com
  • Issuer: paste the “Application ID URI” provided by Azure
  • Login URL: paste the “SAML-P sign-on endpoint” provided by Azure
  • Logout URL: paste the “SAML-P sign-on endpoint” provided by Azure 
  • If you generated a certificate in Azure, paste it in the Certificate field, as well as the SHA-256 fingerprint.
  • Save

To test it, log out and when prompted on the login page, click on “Login with SSO.” You should be redirected to Azure’s login page and fill out your credentials (we recommend you select “remember me” ). You will then be redirected to ITM Platform’s home page, and from then on, clicking on “Login with SSO” will lead you to ITM Platform’s home page.

When it is better to choose Waterfall projects or Agile?

by | Nov 30, 2022

When is it better to choose Waterfall projects or Agile projects?

Waterfall and Agile projects differ in many aspects. You must choose the best methodology that best suits you.

Advantages of Waterfall projects:

  • Well-defined tasks and deadlines
  • Clear organizational diagram- reinforced role of Project Manager
  • Comparison with planned and executed
  • Gantt chart
  • Earned Value Analysis

 

Advantages of Agile projects:

  • Tasks, deadlines, and defined on-the-fly Efforts
  • Reinforced role of each team member, regardless of organizational structure
  • Comparison with last execution capacity and implementation
  • Agile Panel
  • Cumulative Flow Diagram

How can I change the design of the Agile Board?

by | Nov 26, 2022

How can I change the design of the Agile Board?

To modify the design of the Agile Board, you will have to click on the Board tab under projects and select Edit Layout Board.

You can add new columns or sub-columns as well as add swimlanes, and modify colours and names among other options.

Sprints

by | Nov 21, 2022

Sprints

A sprint is a dedicated period in which a set amount of tasks will be completed on a project.

Although sprints are traditionally associated with the agile methodology, specifically Scrum, ITM Platform supports sprints in Waterfall (Gantt) and Agile projects.


 

Index

Enable sprints in your project

Go to the “General” tab, under the “Timeline” section, and tick the “Enable Sprints” checkbox

You can also enable sprints by default in a given project type. Go to CONFIGURATION > PARAMETERS > Project Parameters > Project Type, select the project type you need to customize and tick the “Enable sprints by default” checkbox.

Once sprints are active and populated with tasks, you will only be able to disable the sprint feature if all sprints are emptied first.

Once the sprint feature is enabled, you will notice a new “Sprints” tab and the presence of sprints across other features, such as the task list, the Board, or the Gantt chart.

The sprints tab

The sprint section offers a view of all sprints, allowing you to create and edit sprints and allocate tasks or send tasks to the backlog.


Sprint dates are flexible: you can set no dates, just a start date or both start and end dates.

The filter section will allow you to hide sprints whose tasks are all completed (in a completed status)

The task list

The tasks section has a “Sprint” field in the column selector, as well as a filter to display tasks allocated to one or more sprints.

From the task list, you can allocate multiple tasks to a sprint by selecting them, then clicking on the Sprint dropdown button and selecting the sprint that you want to allocate the tasks to.

You can allocate tasks already in a different sprint or in the backlog.

You cannot allocate archived tasks. You will need to move them out of the archive, then allocate them to a sprint.

Similarly, you can move multiple tasks to the backlog or the archive following the same procedure but clicking on the “Update Status” button.

Tasks moved to the backlog or archive will be deallocated if previously allocated to a different sprint.

You can also create a sprint from the tasks section by clicking on the “Add New” button.

Clicking on a task will lead you to the task “General” section, from which you can also allocate or deallocate it from a sprint.

Agile projects

When the sprints feature is not enabled, an agile project will behave like a Kanban project: one single board containing all tasks in an operational status (all but backlog and archive).

When sprints are enabled, tasks can be allocated to sprints and the Board will display the tasks allocated to it

A typical workflow would imply assigning tasks to a “to-do” status, then as the team makes progress, tasks will flow to an “in-progress” status, then to a “completed” status.

From the Board, you can navigate sprints using the dropdown or the arrows.

Similarly, the project report section has the ability to filter all reports (tasks percentages, cumulative flow, burndown) by sprints, or the whole project

Progress reports will adapt to the sprint you have chosen.

Waterfall projects

Predictive projects can also take advantage of sprints, using the common features, plus filtering or sorting on the Gantt chart by sprint.

Reports, extensions, and API

Sprints are an entity in ITM Platform, just like projects or tasks. Therefore, you can create custom reports, extensions that react to changes or use the API to read, create, and manipulate sprints.</h3

How to configure Single Sign on using Okta (SAML2.0)

by | Nov 3, 2022

How to configure single sign on using Okta (SAML2.0)

 

 

 

This guide will walk you through a standard SSO integration with Okta as the Identity Provider (IdP) and ITM Platform as the Service Provider (Sdp). Before proceeding, we advise you to get familiar with the Single Sign-On process in ITM Platform.

Okta configuration

In your Okta admin panel, go to Applications and Create App Application.

  • General > Edit SAML Settings > Add the App Name and, optionally ITM Platform’s logo. Click Next
  • In A – SAML Settings:
    • Single sign on URL: https://app.itmplatform.com/WebService/SSO.asmx/Auth
    • Audience URI (SP Entity ID):  https://new.itmplatform.com/
    • Name ID format: EmailAddress
    • Application username: Email
  • Scroll down to “Attribute Statements (optional)” and add the following values:
    • Name: email
    • Value: user.email (select from the dropdown)
  • Next > Finish
  • Sign-on > SAML Signing Certificates > Download the SHA-2 certificate.
  • Generate a fingerprint by pasting the full content of the certificate in https://www.samltool.com/fingerprint.php  and generate a sha256 fingerprint that will look like C0:9A:C2:27:4B:46:B8:AF:81:43:CA:65:AE:29:F5:82:E7:AB:01:C3:A9:67:37:1C:52:21:23:CE:7E:74:32:A2. Copy it.
  • On the sign-on section of your Okta application, click  “View SAML setup instructions” (right pane), and copy the values of:
    • Identity Provider Single Sign-On URL (it will look like https://xxxxxxx.okta.com/app/xxxxxitmplatform_xxxxx/exk71wyb72noECfvv5d7/sso/saml
    • Identity Provider Issuer (it will look like http://www.okta.com/exk71wyb72noECfvv5d7)
    • X.509 Certificate

You now have your Okta application all set up and the values you need to configure ITM Platform’s SSO.

ITM Platform configuration

On the left menu, go to CONFIGURATION > ORGANIZATION > Company Settings. Scroll down to “Single Sign-On (SSO) Configuration”

  • Tick “Enable SSO”
  • We don’t recommend ticking “Force SSO for all users” until you have tested all works fine. Otherwise, you may be locked out. If this happens, please get in touch with support@itmplatform.com
  • Issuer: paste the “Identity Provider Issuer” provided by Okta
  • Login URL: paste the “Identity Provider Single Sign-On URL” provided by Okta
  • Certificate: paste the “X.509 Certificate” provided by Okta
  • Fingerprint: paste the fingerprint you generated earlier.
  • Save

To test it, log out and when prompted on the login page, click on “Login with SSO.” You should be redirected to Okta’s login page and fill out your credentials (we recommend you select “remember me” ) . You will then be redirected to ITM Platform’s home page, and from then on, clicking on “Login with SSO” will lead you to ITM Platform.