Create Cloud Service and Identity Provider SSO Providers
- From the Management Console, select Administration > Enterprise Integration.
-
Select Single Sign-on from the menu.
The Single Sign-On page includes three tabs.
- The SSO Groups tab lists the default SSO group, and any groups you have created. All SSO providers are associated with a group.
- The SSO Providers tab lists the SSO providers you create. You will need to create an SSO provider for each service provider (for example, one for each onboarded cloud), and one for the IdP being used in your enterprise.
-
The Identity Proxy Routing tab is where you create the Secure Cloud Access IdP proxy routing
-- the association between your SP and IdP through SSO providers created in Secure Cloud Access.
-
In the SSO Providers tab, click New.
In the next steps, you will create at least two SSOs: One for each onboarded cloud you want to include in the Secure Cloud Access IdP proxy routing, and one for the IdP you use in your enterprise for single sign-on.
-
Create an SSO provider to represent the cloud service provider (SP).
-
Enter information for the provider.
Fields with a colored border on the left require a value.
- Name - Enter a descriptive name.
- Type - Select Cloud Service Provider.
- SSO Group -- Select the group for this provider.
- Description (optional) - Enter information that describes this SSO provider.
- Metadata link - Provide the SSO metadata for your SP, either by entering a link where it is accessible or by uploading a metadata file downloaded from the SSO setup for the SP. The Validate button becomes active.
-
Click Validate.
After a few seconds, the system validates the metadata, and enters a URL for the service provider in the Entity Id field.
- Click Save.
- If needed, create SSO providers for additional service providers.
-
Enter information for the provider.
-
Create an SSO provider for the identity provider (IdP).
-
Enter the following information.
Fields with a colored border on the left require a value.
- Name - Enter a descriptive name for this SSO provider.
- Type - Select Identity Provider.
- SSO Group -- Select the same SSO group for this provider as you selected for the Service Provider type.
- Description (optional) - Enter descriptive text for this SSO provider.
- Metadata link - Provide the metadata for the IdP from your SSO setup, either by entering a link or by uploading a metadata file downloaded from the SSO setup for the IdP.
-
Click Validate.
After a few seconds, the system validates the metadata, and enters a URL for the identity provider in the Entity Id field.
- Click Save.
-
Enter the following information.