Approved Constant Contact technology partners selling Toolkit can integrate with Constant Contact's Single Sign On (SSO) solution that uses SAML 2.0 standards. This allows their customers to access their integrated Constant Contact account without having to sign in with a separate username and password.
Please contact your Constant Contact partner account manager to start the process required for setting up and testing SSO.
The Constant Contact SSO authentication sequence of events is as follows:
The authentication sequence used in the Identity Provider initiated SSO is illustrated in the following diagram:
Constant Contact's SSO implementation currently only supports Identity Provider (IdP) initiated SSO, meaning the initial user authentication is performed by the Identity Provider (IdP) and not by the Service Provider (SP).
The IdP makes SAML posts to the following Constant Contact SP URL: https://idfed.<env>.constantcontact.com/sp/ACS.saml2, where <env> defines the environment to differentiate between pre-production testing and production environments. We will provide you with the complete URL.
The IdP identifies itself to the SP using a SAML2 response. The digitally signed response must include the following parameters.