Configure IdP Proxy
Configuring an IdP proxy includes these steps.
- Update SP and IdP SSO settings to point to the Secure Cloud Access IdP proxy.
- Create SSO providers, at least one from your service provider metadata and one from your identity provider (IdP) metadata.
- Create the Secure Cloud Access IdP proxy routing by associating the cloud and the IDP represented as SSO providers.
- Create a new SSO group.
-
(Optional) Create one or more cloud authentication policies that define criteria for user access.
The default action for login activity is based on the configuration setting for the Default Violation Action field under Administration > System Settings > Advanced Configuration (Proxy Settings tab). You can set the action in the policy to Deny for a specific user, group, location, OS, or device.
Once these steps are complete, all authentication requests from a user login will go through the Secure Cloud Access IdP proxy. If you have created one or more authentication policies to restrict access, Secure Cloud Access will apply those policies.
The following sections provide instructions for creating SSO providers, creating the Secure Cloud Access IdP proxy, and creating a login policy.