Quick Connection Guide

Size: px
Start display at page:

Download "Quick Connection Guide"

Transcription

1 Amazon Web Services Connector Version 1.0 Quick Connection Guide

2 Ping Identity Corporation. All rights reserved. PingFederate Amazon Web Services Connector Quick Connection Guide Version 1.0 January, 2014 Ping Identity Corporation th Street, Suite 100 Denver, CO U.S.A. Phone: ( outside North America) Fax: Web Site: Trademarks Ping Identity, the Ping Identity logo, PingFederate, PingOne, PingConnect, and PingEnable are registered trademarks of Ping Identity Corporation ( Ping Identity ). All other trademarks or registered trademarks are the property of their respective owners. Disclaimer The information provided in this document is provided as is without warranty of any kind. Ping Identity disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Ping Identity or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Ping Identity or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply. Document Lifetime Ping Identity may occasionally update online documentation between releases of the related software. Consequently, if this PDF was not downloaded recently, it may not contain the most up-to-date information. Please refer to the online documentation at documentation.pingidentity.com for the most current information. From the Web site, you may also download and refresh this PDF if it has been updated, as indicated by a change in this date: January 10, 2014.

3 Contents Preface About This Manual Intended Audience Summary Text Conventions Other Documentation Chapter 1 Introduction Connector Overview Setup Summary System Requirements ZIP Manifest Chapter 2 Installation and Setup Connector Installation Configuring Server Settings Downloading AWS SAML Metadata Obtaining AWS Access Keys Creating a SAML Identity Provider and Role in AWS Chapter 3 Connecting to Amazon Web Services Configuring a Connection Assigning Groups To assign users to a provisioning group at AWS: Exporting Metadata Workday Quick Connection Guide iii

4 Preface About This Manual Intended Audience Summary This Guide provides procedures for configuring a PingFederate server to enable secure Internet single sign-on (SSO) for an organization s user accounts with Amazon Web Services (AWS). The Guide also provides Outbound Provisioning (formerly Saas Provisioning) configuration information relevant to Amazon Web Services. This Guide is intended for security and network administrators and other IT professionals responsible for identity management among both internal and external business entities. For installation and configuration, some familiarity with PingFederate operations and the administrative console, as well as Amazon administration, is highly recommended. If you are not familiar with cross-domain Internet SSO or identity federation, it might be helpful to browse through the first few sections of Getting Started and the Administrator s Manual in your PingFederate installation before continuing. The Guide consists of the following chapters: Chapter 1, Introduction An overview of Connector features, system requirements, and use cases. Chapter 2, Installation and Setup Installation and preliminary configuration instructions. Amazon Quick Setup Guide 1

5 Chapter Preface Chapter 3, Connecting to Amazon Web Services How to set up PingFederate to connect to Amazon Web Services. Text Conventions This document uses the text conventions identified below. Table 1: Text Conventions Convention Fixed Width Blue text Italic Description Indicates text that must be typed exactly as shown in the instructions. Also used to represent program code, file names, and directory paths. Indicates hypertext links. Used for emphasis and document titles. [text] Used for procedures where only one step is required. Sans serif Sans serif bold Identifies descriptive text on a user-interface screen. Example: Print Document dialog Identifies menu items, navigational links, or buttons. For example: Click Save. Other Documentation This Guide refers frequently to information contained in manuals that are part of the core PingFederate distribution. The documents listed below are available under Product Documentation at pingidentity.com. Tip: PingFederate provides context-sensitive Help. Click Help in the upper-right portion of the administrative console for immediate, relevant guidance and links to related information. Getting Started Provides an introduction to secure Internet SSO and PingFederate, including background information about federated identity management and standards, product installation instructions, and a primer on using the PingFederate administrative console. Administrator s Manual Provides key concepts as well as detailed instructions for using the PingFederate administrative console also connectionendpoint and other Web-application developer information, a glossary, and a list of common acronyms. 2 PingFederate

6 Chapter 1 Introduction Connector Overview The PingFederate Amazon Web Services (AWS) Connector extends PingFederate capabilities, enabling enterprises to provision its users and groups to Amazon Web Services. This AWS Connector includes a quick connection template to easily set up a single sign-on (SSO) connection requiring AWS provisioning. The connector makes use of the Amazon Web Services API v1.5 to communicate with Amazon Web Services. The PingFederate administrative console uses a quick-connection template to configure most of the settings needed to connect to Amazon Web Services (AWS) for SSO and provisioning. Choose the AWS template on the initial Connection Template screen during configuration of a Service Provider (SP) connection. This document provides instructions for filling in site-specific connection settings. Once the settings are complete, you can configure provisioning settings according to your deployment needs. Before configuring an SSO connection to AWS, you must configure (or verify) several system settings in PingFederate. You must also download SAML 2.0 metadata from the AWS administrative site. Tip: This Guide is intended to provide only configuration instructions associated with using the quick-connection template for SSO to AWS. After completing the SSO configuration, if you are including provisioning for the connection, please refer to Configuring Outbound Provisioning in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or see the associated Help pages during the configuration). Amazon Quick Setup Guide 3

7 Chapter 1 Introduction Setup Summary System Requirements ZIP Manifest The general steps involved in this process are outlined below, including references to applicable sections of this Guide and other PingFederate documents: 1. Install the Connector see Connector Installation on page Configure Server Settings in PingFederate to enable SSO quick connections see Configuring Server Settings on page Download AWS SAML Metadata to configure SSO endpoints and other information see Downloading AWS SAML Metadata on page Obtain AWS Access Keys to authenticate provisioning requests see Obtaining AWS Access Keys on page Create an AWS SAML Identity Provider and Role to configure an SSO connection to Amazon see Creating a SAML Identity Provider and Role in AWS on page Use the quick-connection template to configure an SSO and provisioning connection to AWS see Configuring a Connection on page 9. The AWS Connector requires the installation of PingFederate or higher. The distribution ZIP file for the AWS Connector contains the following: ReadMeFirst.pdf contains links to this online documentation. /legal contains this document: Legal.pdf copyright and license information. /dist contains libraries needed for the Connector: pf-aws-quickconnection-1.0.jar PingFederate Amazon Web Services (AWS) Connector. aws-java-sdk jar Amazon API JAR file. 4 PingFederate

8 Chapter 2 Installation and Setup Connector Installation These sections provide instructions for setting up PingFederate to use the AWS Connector. To install the AWS Connector: 1. Stop the PingFederate server if it is running. 2. Unzip the AWS Connector distribution ZIP file into a holding directory. 3. From the dist directory, copy the files: pf-aws-quickconnection-1.0.jar aws-java-sdk jar into the directory: <pf_install>/pingfederate/server/default/deploy 4. Edit the run.properties file located in <pf_install>/ pingfederate/bin, changing the property pf.provisioner.mode to STANDALONE, for example: pf.provisioner.mode=standalone The property is located near the end of the file. Note: For information about using the FAILOVER setting for runtime deployment, see the PingFederate Server Clustering Guide. 5. Start the PingFederate server. Amazon Quick Setup Guide 5

9 Chapter 2 Installation and Setup Configuring Server Settings If you have not yet used PingFederate, follow the instructions under Running PingFederate for the First Time in the "Installation" chapter of Getting Started. To enable quick connections to AWS, several selections (described in the following procedure) are required when you reach Roles and Protocols in the Configuring My Server screen sequence. If you have already run and configured the PingFederate server, you may need to verify or change settings on the Roles and Protocols screen, including enabling Outbound Provisioning, as described in the following procedure. To enable SSO quick connections to AWS: 1. On the Roles and Protocols screen, ensure that the IdP role is enabled and SAML 2.0 and Outbound Provisioning are selected for that role. (Click Server Settings on the Main Menu to locate this screen after initial installation.) Tip: This setting enables provisioning globally for all connections to supported providers. However, you have a choice of including provisioning or not during the configuration of specific connections. 6 PingFederate

10 Downloading AWS SAML Metadata 2. Click Next to continue the Configuring My Server task (or Save for an existing configuration). Note: Enabling Outbound Provisioning adds a new screen to the task flow, requiring selection of a database used to monitor provisioning status. For more information, see Configuring Outbound Provisioning Settings in the "System Settings" chapter of the PingFederate Administrator s Guide (or click Help from the configuration screen). Downloading AWS SAML Metadata The AWS quick-connection template uses SAML 2.0 metadata from AWS to configure SSO endpoints and other information. Download the AWS metadata XML file before creating the AWS connection in PingFederate. To download SAML 2.0 Metadata for AWS 1. Access the following URL: 2. Save the XML file to a desired location. Obtaining AWS Access Keys You need to specify a token and secret while configuring AWS provisioning in PingFederate. These credentials are used to authenticate provisioning requests. Amazon Quick Setup Guide 7

11 Chapter 2 Installation and Setup To obtain AWS access keys 1. Using your AWS administration account, access the AWS Management Console. 2. Copy the Access Key ID and the Access Key Secret. For information on getting your access key ID and secret access key, see the AWS documentation ( AWSSimpleQueueService/latest/SQSGettingStartedGuide/ AWSCredentials.html). Note: Complete the AWS SSO configuration by configuring the SP connection (see the section Connecting to Amazon Web Services ). Creating a SAML Identity Provider and Role in AWS You need to create a SAML Identity Provider and Role using your AWS Administrative account to use when configuring an SSO connection. The Identity Provider setup requires the SAML 2.0 Metadata file from the SP connection that SSO is initiated from. For more information on creating SAML Identity Providers on AWS, see the following AWS Documentation: For more information on creating Roles in AWS, see the following AWS Documentation: PingFederate

12 Chapter 3 Connecting to Amazon Web Services Configuring a Connection To complete this configuration, use this section to configure a secure SSO connection for SSO and provisioning to Amazon Web Services (AWS). Use the following procedure to configure a quick connection for SSO and provisioning to Amazon Web Services. Tip: This procedure provides instructions for configuring minimum required connection settings; the instructions skip setup screens in which all necessary information is automatically configured (or in which standard defaults are used). The administrative console guides you to required configuration steps automatically by displaying prompts at entry points for the task flows. In general, you may add or change settings on all screens to suit any special requirements. To configure a connection to AWS 1. If you have not already done so, follow the instructions under Configuring Server Settings on page If you have not already done so, use PingFederate to configure the IdP adapter you want to use. For information and instructions, see Configuring IdP Adapters in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide. 3. On the Main Menu, click Create New under SP Connections in the IdP Configuration section. Amazon Quick Setup Guide 9

13 Chapter 3 Connecting to Amazon Web Services 4. On the Connection Template screen, select AWS in the Connection Template drop-down list. If this selection is not available, verify the Connector installation and restart PingFederate. 5. Click Browse to locate and select the AWS metadata file that you downloaded in the Downloading AWS SAML Metadata section and click Next. 6. On the Connection Type screen, ensure you select both Browser SSO Profiles and Outbound Provisioning and click Next. 7. (Optional) On the Connection Options screen, ensure you select the Browser SSO option. 8. Click Next. 9. On the General Info screen, ensure the Partner s Entity ID (Connection ID) and Connection Name are accurate. Change details if required and click Next. 10. Click Configure Browser SSO on the Browser SSO screen. 10 PingFederate

14 Configuring a Connection 11. On the Assertion Creation screen, click Configure Assertion Creation. 12. On the IdP Adapter Mapping screen, click Map New Adapter Instance and map the IdP Adapter Instance you defined earlier in this procedure. When you return to the IdP Adapter Mapping screen, click Done. This configuration is site-dependent and cannot be pre-configured. For detailed information and instructions, see IdP Adapter Mapping in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or refer to the Help pages). 13. On the Assertion Creation screen, click Next. Amazon Quick Setup Guide 11

15 Chapter 3 Connecting to Amazon Web Services 14. On the Protocols Settings screen, click Done. Tip: This task is completely configured for you, but click Configure Protocol Settings if you want to review the setup or make changes to any special AWS requirements. For configuration information, see sections under Configuring Protocol Settings in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or use the context-sensitive Help). 15. On the Browser SSO screen, click Next. 16. On the Credentials screen, click Configure Credentials. 17. On the Digital Signature Settings screen, select a signing certificate. For more information, see Configuring Digital Signature Settings in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or click Help). If you have not yet created or imported a signing certificate, click Manage Certificates and do so now (see Digital Signing and Decryption Keys and Certificates in the "Security Management" chapter of the PingFederate Administrator s Guide). 18. Click Done and then Next on the Credentials screen. 19. On the Outbound Provisioning screen, click Configure Provisioning. 20. On the Target screen, enter the AWS credentials from the Obtaining AWS Access Keys section by entering the Access Key ID into the accesskey field and entering the Secret Access Key into the accesskeysecret field. 21. Click Next to continue the provisioning configuration. For more information see the sections under Configuring Outbound Provisioning in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or refer to the Help pages). Tip: If you are not ready to complete the provisioning configuration, you can click Save and return to the configuration screen later (from the Manage Connections screen--click Manage All SP on the Main Menu). 12 PingFederate

16 Configuring a Connection 22. When you return to the Outbound Provisioning screen, click Next. 23. On the Activation and Summary screen, click Save. For information about how to map users into groups, see Assigning Groups next. For important information about using this screen, see Editing and Activating a Connection in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or click Help). 24. Export the metadata for the SP connection you just created to use when creating your SAML Identity Provider in AWS. For more information, see Exporting Metadata in the "System Administration" chapter of the PingFederate Administrator s Guide (or click Help). 25. Create a SAML Identity Provider and Role in AWS. For information on creating a SAML Identity Provider and Roles in AWS, see Creating a SAML Identity Provider and Role in AWS on page On the Main Menu, select your SP Connection. 27. On the Activation and Summary page, select Attribute Contract in the Assertion Creation section. 28. On the Attribute Contract screen, in addition to SAML_SUBJECT, the following attributes are required: Enter each attribute and click Add. 30. Once the attributes are added, click Done. 31. On the IdP Adapter Mapping page, select the adapter you updated the attribute contract for. 32. On the Attribute Contract Fulfillment page, complete the configuration for the new contract attributes and click Done. Amazon Quick Setup Guide 13

17 Chapter 3 Connecting to Amazon Web Services Assigning Groups 33. On the IdP Adapter Mapping page, click Done. 34. On the Assertion Creation page, click Done. 35. On the Browser SSO page, click Save. On the Attribute Mapping screen in the provisioning configuration flow, one provisioning field for AWS requires special mapping: Groups Used to assign users in the provisioning channel to one or more groups. The following procedure provides details on mapping this field to accomplish the associated provisioning feature where needed. To assign users to a provisioning group at AWS: 1. On the Attribute Mapping screen, click Edit for the Groups field. 2. On the Specify Attribute Mapping screen, select the Root Object Class and add the attribute containing the group(s) to which the user belongs and corresponding to groups to be assigned at AWS. 3. In the Options section of the screen, select Extract CN from DN in the Parsing drop-down list. 4. For more information on Mapping Attributes, see Mapping Attributes in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide 14 PingFederate

18 Exporting Metadata Exporting Metadata For SAML deployments PingFederate supports the export and import of metadata files, which federation partners can use to expedite their configuration. Once your AWS Quick Connection is configured, the metadata needs to be exported. For more information, see Exporting Metadata in the "System Administration" chapter of the PingFederate Administrator s Guide (or click Help). Amazon Quick Setup Guide 15

Quick Connection Guide

Quick Connection Guide WebEx Connector Version 1.0.1 Quick Connection Guide 2014 Ping Identity Corporation. All rights reserved. PingFederate WebEx Connector Quick Connection Guide Version 1.0.1 March, 2014 Ping Identity Corporation

More information

Dropbox Connector. Version 2.0. User Guide

Dropbox Connector. Version 2.0. User Guide Dropbox Connector Version 2.0 User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate Dropbox Connector User Guide Version 2.0 February, 2016 Ping Identity Corporation 1001 17th Street,

More information

Zendesk Connector. Version 2.0. User Guide

Zendesk Connector. Version 2.0. User Guide Zendesk Connector Version 2.0 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate Zendesk Connector Quick Connection Guide Version 2.0 November, 2015 Ping Identity Corporation

More information

WebEx Connector. Version 2.0. User Guide

WebEx Connector. Version 2.0. User Guide WebEx Connector Version 2.0 User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate WebEx Connector User Guide Version 2.0 May, 2016 Ping Identity Corporation 1001 17th Street, Suite

More information

Slack Connector. Version 2.0. User Guide

Slack Connector. Version 2.0. User Guide Slack Connector Version 2.0 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate Slack Connector User Guide Version 2.0 December, 2015 Ping Identity Corporation 1001 17th Street,

More information

Box Connector. Version 2.0. User Guide

Box Connector. Version 2.0. User Guide Box Connector Version 2.0 User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate Box Connector User Guide Version 2.0 March, 2016 Ping Identity Corporation 1001 17th Street, Suite

More information

CoreBlox Token Translator. Version 1.0. User Guide

CoreBlox Token Translator. Version 1.0. User Guide CoreBlox Token Translator Version 1.0 User Guide 2014 Ping Identity Corporation. All rights reserved. PingFederate CoreBlox Token Translator User Guide Version 1.0 April, 2014 Ping Identity Corporation

More information

Quick Connection Guide

Quick Connection Guide ServiceNow Connector Version 1.0 Quick Connection Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate ServiceNow Connector Quick Connection Guide Version 1.0 August, 2015 Ping Identity

More information

CoreBlox Integration Kit. Version 2.2. User Guide

CoreBlox Integration Kit. Version 2.2. User Guide CoreBlox Integration Kit Version 2.2 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate CoreBlox Integration Kit User Guide Version 2.2 November, 2015 Ping Identity Corporation

More information

Web Access Management Token Translator. Version 2.0. User Guide

Web Access Management Token Translator. Version 2.0. User Guide Web Access Management Token Translator Version 2.0 User Guide 2014 Ping Identity Corporation. All rights reserved. PingFederate Web Access Management Token Translator User Guide Version 2.0 August, 2014

More information

SSO Integration Overview

SSO Integration Overview SSO Integration Overview 2006-2014 Ping Identity Corporation. All rights reserved. PingFederate SSO Integration Overview Version 7.2 June, 2014 Ping Identity Corporation 1001 17th Street, Suite 100 Denver,

More information

OAM Integration Kit. Version 3.0. User Guide

OAM Integration Kit. Version 3.0. User Guide OAM Integration Kit Version 3.0 User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate OAM Integration Kit User Guide Version 3.0 May, 2016 Ping Identity Corporation 1001 17th Street,

More information

OpenID Cloud Identity Connector. Version 1.3.x. User Guide

OpenID Cloud Identity Connector. Version 1.3.x. User Guide OpenID Cloud Identity Connector Version 1.3.x User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate OpenID Cloud Identity Connector User Guide Version 1.3.x January, 2016 Ping Identity

More information

Quick Connection Guide

Quick Connection Guide Egnyte Connector Version 1.0 Quick Connection Guide 2015 Ping I dentity Corporation. A ll rights reserved. PingFederate Egnyte Connector Quick Connection Guide Version 1.0 February, 2015 Ping Identity

More information

WebSphere Integration Kit. Version User Guide

WebSphere Integration Kit. Version User Guide WebSphere Integration Kit Version 2.1.1 User Guide 2012 Ping Identity Corporation. All rights reserved. PingFederate WebSphere User Guide Version 2.1.1 December, 2012 Ping Identity Corporation 1001 17th

More information

Version 7.x. Quick-Start Guide

Version 7.x. Quick-Start Guide Version 7.x Quick-Start Guide 2005-2013 Ping Identity Corporation. All rights reserved. PingFederate Quick-Start Guide Version 7.x September, 2013 Ping Identity Corporation 1001 17th Street, Suite 100

More information

.NET Integration Kit. Version User Guide

.NET Integration Kit. Version User Guide .NET Integration Kit Version 2.5.1 User Guide 2012 Ping Identity Corporation. All rights reserved. PingFederate.NET Integration Kit User Guide Version 2.5.1 December, 2012 Ping Identity Corporation 1001

More information

Google Apps Connector. Version User Guide

Google Apps Connector. Version User Guide Google Apps Connector Version 3.0.4 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate Google Apps Connector User Guide Version 3.0.4 May, 2015 Ping Identity Corporation 1001

More information

Upgrade Utility. Version 7.3. User Guide

Upgrade Utility. Version 7.3. User Guide Upgrade Utility Version 7.3 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate Upgrade Utility User Guide Version 7.3 January, 2015 Ping Identity Corporation 1001 17 th Street,

More information

IWA Integration Kit. Version 3.1. User Guide

IWA Integration Kit. Version 3.1. User Guide IWA Integration Kit Version 3.1 User Guide 2013 Ping Identity Corporation. All rights reserved. PingFederate IWA Integration Kit User Guide Version 3.1 June, 2013 Ping Identity Corporation 1001 17th Street,

More information

PingOne. How to Set Up a PingFederate Connection to the PingOne Dock. Quick Start Guides. Version 1.1 December Created by: Ping Identity Support

PingOne. How to Set Up a PingFederate Connection to the PingOne Dock. Quick Start Guides. Version 1.1 December Created by: Ping Identity Support PingOne Quick Start Guides How to Set Up a PingFederate Connection to the PingOne Dock Version 1.1 December 2014 Created by: Ping Identity Support Disclaimer This document is proprietary and not for general

More information

PingFederate 6.6. Upgrade Utility. User Guide

PingFederate 6.6. Upgrade Utility. User Guide PingFederate 6.6 Upgrade Utility User Guide 2011 Ping Identity Corporation. All rights reserved. PingFederate Upgrade Utility User Guide Version 6.6 December, 2011 Ping Identity Corporation 1001 17 th

More information

Office 365 Connector 2.1

Office 365 Connector 2.1 Office 365 Connector 2.1 Contents 2 Contents Copyright... 3 PingFederate Office 365 Connector Guide 2.1... 4 Connector overview...4 System requirements...4 Choose a SSO configuration path...4 Installation

More information

Google Apps Connector

Google Apps Connector Google Apps Connector Version 3.1 User Guide Copyright 1 Copyright 2017 Ping Identity Corporation. All rights reserved. PingFederate Google Apps Connector User Guide Version 3.1 December, 2017 Ping Identity

More information

PingFederate Upgrade Utility. User Guide

PingFederate Upgrade Utility. User Guide PingFederate 6.4.1 Upgrade Utility User Guide 2011 Ping Identity Corporation. All rights reserved. PingFederate Upgrade Utility User Guide Version 6.4.1 February, 2011 Ping Identity Corporation 1099 18th

More information

SDK Developer s Guide

SDK Developer s Guide SDK Developer s Guide 2005-2013 Ping Identity Corporation. All rights reserved. PingFederate SDK Developer s Guide Version 7.1 August, 2013 Ping Identity Corporation 1001 17 th Street, Suite 100 Denver,

More information

RSA SecurID Ready Implementation Guide. Last Modified: December 13, 2013

RSA SecurID Ready Implementation Guide. Last Modified: December 13, 2013 Ping Identity RSA SecurID Ready Implementation Guide Partner Information Last Modified: December 13, 2013 Product Information Partner Name Ping Identity Web Site www.pingidentity.com Product Name PingFederate

More information

PingFederate 6.3. Upgrade Utility. User Guide

PingFederate 6.3. Upgrade Utility. User Guide PingFederate 6.3 Upgrade Utility User Guide 2010 Ping Identity Corporation. All rights reserved. PingFederate Upgrade Utility User Guide Version 6.3 September, 2010 Ping Identity Corporation 1099 18th

More information

X.509 Certificate Integration Kit 1.2

X.509 Certificate Integration Kit 1.2 X.509 Certificate Integration Kit 1.2 Contents 2 Contents PingFederate X.509 Certificate Integration Kit 1.2... 3 Intended audience... 3 System requirements...3 SSO processing... 3 Installation and setup...4

More information

Integration Guide. SafeNet Authentication Manager. Using SAM as an Identity Provider for PingFederate

Integration Guide. SafeNet Authentication Manager. Using SAM as an Identity Provider for PingFederate SafeNet Authentication Manager Integration Guide Technical Manual Template Release 1.0, PN: 000-000000-000, Rev. A, March 2013, Copyright 2013 SafeNet, Inc. All rights reserved. 1 Document Information

More information

PingFederate 6. Getting Started

PingFederate 6. Getting Started PingFederate 6 Getting Started 2009 Ping Identity Corporation. All rights reserved. Part Number 3007-398 Version 6.0 April, 2009 Ping Identity Corporation 1099 18th Street, Suite 2950 Denver, CO 80202

More information

Server 8.3. PingFederate CORS Support

Server 8.3. PingFederate CORS Support Server 8.3 PingFederate CORS Support Copyright 1 2017 Ping Identity Corporation. All rights reserved. PingFederate CORS Support April 18, 2017 Ping Identity Corporation 1001 17th Street, Suite 100 Denver,

More information

<Partner Name> <Partner Product> RSA SECURID ACCESS Implementation Guide. PingIdentity PingFederate 8

<Partner Name> <Partner Product> RSA SECURID ACCESS Implementation Guide. PingIdentity PingFederate 8 RSA SECURID ACCESS Implementation Guide PingIdentity John Sammon & Gina Salvalzo, RSA Partner Engineering Last Modified: February 27 th, 2018 Solution Summary Ping Identity

More information

Polycom RealPresence Access Director System, Virtual Edition

Polycom RealPresence Access Director System, Virtual Edition Getting Started Guide Version 4.0 July 2014 3725-78702-002D Polycom RealPresence Access Director System, Virtual Edition Copyright 2014, Polycom, Inc. All rights reserved. No part of this document may

More information

SDK Developer s Guide

SDK Developer s Guide SDK Developer s Guide 2005-2012 Ping Identity Corporation. All rights reserved. PingFederate SDK Developer s Guide Version 6.10 October, 2012 Ping Identity Corporation 1001 17 th Street, Suite 100 Denver,

More information

Release 3.0. Delegated Admin Application Guide

Release 3.0. Delegated Admin Application Guide Release 3.0 Delegated Admin Application Guide Notice PingDirectory Product Documentation Copyright 2004-2018 Ping Identity Corporation. All rights reserved. Trademarks Ping Identity, the Ping Identity

More information

Nimsoft Service Desk. Single Sign-On Configuration Guide. [assign the version number for your book]

Nimsoft Service Desk. Single Sign-On Configuration Guide. [assign the version number for your book] Nimsoft Service Desk Single Sign-On Configuration Guide [assign the version number for your book] Legal Notices Copyright 2012, CA. All rights reserved. Warranty The material contained in this document

More information

Partner Center: Secure application model

Partner Center: Secure application model Partner Center: Secure application model The information provided in this document is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including

More information

Integration Guide. PingFederate SAML Integration Guide (SP-Initiated Workflow)

Integration Guide. PingFederate SAML Integration Guide (SP-Initiated Workflow) Integration Guide PingFederate SAML Integration Guide (SP-Initiated Workflow) Copyright Information 2018. SecureAuth is a registered trademark of SecureAuth Corporation. SecureAuth s IdP software, appliances,

More information

SAML SSO Okta Identity Provider 2

SAML SSO Okta Identity Provider 2 SAML SSO Okta Identity Provider SAML SSO Okta Identity Provider 2 Introduction 2 Configure Okta as Identity Provider 2 Enable SAML SSO on Unified Communications Applications 4 Test SSO on Okta 4 Revised:

More information

Introduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 7 Installing Oracle HTTP Server...

Introduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 7 Installing Oracle HTTP Server... Oracle Access Manager Configuration Guide for On-Premises Version 17 October 2017 Contents Introduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 7 Installing

More information

Cloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0

Cloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0 Cloud Access Manager 8.1.3 How to Configure for SSO to SAP Copyright 2017 One Identity LLC. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described

More information

SafeNet Authentication Service

SafeNet Authentication Service SafeNet Authentication Service Integration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV. and/or its subsidiaries who shall have and keep

More information

Quick Start Guide for SAML SSO Access

Quick Start Guide for SAML SSO Access Quick Start Guide Quick Start Guide for SAML SSO Access Cisco Unity Connection SAML SSO 2 Introduction 2 Understanding Service Provider and Identity Provider 2 Understanding SAML Protocol 3 SSO Mode 4

More information

April Understanding Federated Single Sign-On (SSO) Process

April Understanding Federated Single Sign-On (SSO) Process April 2013 Understanding Federated Single Sign-On (SSO) Process Understanding Federated Single Sign-On Process (SSO) Disclaimer The following is intended to outline our general product direction. It is

More information

Configuring Single Sign-on from the VMware Identity Manager Service to Marketo

Configuring Single Sign-on from the VMware Identity Manager Service to Marketo Configuring Single Sign-on from the VMware Identity Manager Service to Marketo VMware Identity Manager JANUARY 2016 V1 Configuring Single Sign-On from VMware Identity Manager to Marketo Table of Contents

More information

SafeNet Authentication Service

SafeNet Authentication Service SafeNet Authentication Service Integration Guide Using SafeNet Authentication Service as an Identity Provider for Tableau Server All information herein is either public information or is the property of

More information

SAML-Based SSO Configuration

SAML-Based SSO Configuration Prerequisites, page 1 SAML SSO Configuration Task Flow, page 5 Reconfigure OpenAM SSO to SAML SSO Following an Upgrade, page 9 SAML SSO Deployment Interactions and Restrictions, page 9 Prerequisites NTP

More information

Server Clustering Guide

Server Clustering Guide Server Clustering Guide 2006-2014 Ping Identity Corporation. All rights reserved. PingFederate Server Clustering Guide Version 7.2 June, 2014 Ping Identity Corporation 1001 17 th Street, Suite 100 Denver,

More information

Videoscape Distribution Suite Software Installation Guide

Videoscape Distribution Suite Software Installation Guide First Published: August 06, 2012 Last Modified: September 03, 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800

More information

CSP PARTNER APPLICATION OVERVIEW Multi-tenant application model

CSP PARTNER APPLICATION OVERVIEW Multi-tenant application model CSP PARTNER APPLICATION OVERVIEW Multi-tenant application model The information provided in this document is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express

More information

Novell Access Manager

Novell Access Manager Setup Guide AUTHORIZED DOCUMENTATION Novell Access Manager 3.1 SP3 February 02, 2011 www.novell.com Novell Access Manager 3.1 SP3 Setup Guide Legal Notices Novell, Inc., makes no representations or warranties

More information

SAML-Based SSO Configuration

SAML-Based SSO Configuration Prerequisites, page 1 SAML SSO Configuration Workflow, page 5 Reconfigure OpenAM SSO to SAML SSO After an Upgrade, page 9 Prerequisites NTP Setup In SAML SSO, Network Time Protocol (NTP) enables clock

More information

SafeNet Authentication Manager

SafeNet Authentication Manager SafeNet Authentication Manager Integration Guide Using SafeNet Authentication Manager as an Identity Provider for F5 BIG- IP Access Policy Manager All information herein is either public information or

More information

PingFederate 5.0. Release Notes

PingFederate 5.0. Release Notes PingFederate 5.0 Release Notes 2008 Ping Identity Corporation. All rights reserved. January, 2008 Ping Identity Corporation 1099 18th Street, Suite 2950 Denver, CO 80202 U.S.A. Phone: 877.898.2905 (+1

More information

Cisco TEO Adapter Guide for SAP Java

Cisco TEO Adapter Guide for SAP Java Release 2.3 April 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part

More information

Paging and Loud Ringing with VVX600 and Algo 8180

Paging and Loud Ringing with VVX600 and Algo 8180 SOLUTION MANUAL September 2015 Rev A Paging and Loud Ringing with VVX600 and Algo 8180 Application Note Polycom, Inc. 1 Paging and Loud Ringing with VVX600 and Algo 8180 Copyright 2015, Polycom, Inc. All

More information

Setting Up Resources in VMware Identity Manager (SaaS) Modified 15 SEP 2017 VMware Identity Manager

Setting Up Resources in VMware Identity Manager (SaaS) Modified 15 SEP 2017 VMware Identity Manager Setting Up Resources in VMware Identity Manager (SaaS) Modified 15 SEP 2017 VMware Identity Manager Setting Up Resources in VMware Identity Manager (SaaS) You can find the most up-to-date technical documentation

More information

About This Document 3. Overview 3. System Requirements 3. Installation & Setup 4

About This Document 3. Overview 3. System Requirements 3. Installation & Setup 4 About This Document 3 Overview 3 System Requirements 3 Installation & Setup 4 Step By Step Instructions 5 1. Login to Admin Console 6 2. Show Node Structure 7 3. Create SSO Node 8 4. Create SAML IdP 10

More information

McAfee Cloud Identity Manager

McAfee Cloud Identity Manager Marketo Cloud Connector Guide McAfee Cloud Identity Manager version 3.5 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed,

More information

RealPresence Platform Director

RealPresence Platform Director RealPresence CloudAXIS Suite Administrators Guide Software 1.3.1 ADMINISTRATOR GUIDE Software 1.8 December 2014 3725-66008-001 Rev C RealPresence Platform Director Polycom, Inc. 1 Copyright 2014, Polycom,

More information

McAfee Cloud Identity Manager

McAfee Cloud Identity Manager WebExConnect Cloud Connector Guide McAfee Cloud Identity Manager version 3.5 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted,

More information

Setting Up Resources in VMware Identity Manager (On Premises) Modified on 30 AUG 2017 VMware AirWatch 9.1.1

Setting Up Resources in VMware Identity Manager (On Premises) Modified on 30 AUG 2017 VMware AirWatch 9.1.1 Setting Up Resources in VMware Identity Manager (On Premises) Modified on 30 AUG 2017 VMware AirWatch 9.1.1 Setting Up Resources in VMware Identity Manager (On Premises) You can find the most up-to-date

More information

SafeNet Authentication Manager

SafeNet Authentication Manager SafeNet Authentication Manager Integration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV. and/or its subsidiaries who shall have and keep

More information

EAM Portal User's Guide

EAM Portal User's Guide EAM Portal 9.0.2 User's Guide Copyright 2017 One Identity LLC. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described in this guide is furnished

More information

SafeNet Authentication Service

SafeNet Authentication Service SafeNet Authentication Service Integration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV. and/or its subsidiaries who shall have and keep

More information

Setting Up Resources in VMware Identity Manager

Setting Up Resources in VMware Identity Manager Setting Up Resources in VMware Identity Manager VMware Identity Manager 2.7 This document supports the version of each product listed and supports all subsequent versions until the document is replaced

More information

McAfee Cloud Identity Manager

McAfee Cloud Identity Manager Google Cloud Connector Guide McAfee Cloud Identity Manager version 1.1 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed,

More information

One Identity Active Roles 7.2

One Identity Active Roles 7.2 One Identity December 2017 This document provides information about the Active Roles Add_on Manager7.2. About Active Roles Add_on Manager New features Known issues System requirements Getting started with

More information

EXTENDING SINGLE SIGN-ON TO AMAZON WEB SERVICES BEST PRACTICES FOR IDENTITY FEDERATION IN AWS E-BOOK

EXTENDING SINGLE SIGN-ON TO AMAZON WEB SERVICES BEST PRACTICES FOR IDENTITY FEDERATION IN AWS E-BOOK EXTENDING SINGLE SIGN-ON TO AMAZON WEB SERVICES BEST PRACTICES FOR IDENTITY FEDERATION IN AWS 03 EXECUTIVE OVERVIEW 05 INTRODUCTION 07 MORE CLOUD DEPLOYMENTS MEANS MORE ACCESS 09 IDENTITY FEDERATION IN

More information

Setting Up Resources in VMware Identity Manager. VMware Identity Manager 2.8

Setting Up Resources in VMware Identity Manager. VMware Identity Manager 2.8 Setting Up Resources in VMware Identity Manager VMware Identity Manager 2.8 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have comments

More information

RECOMMENDED DEPLOYMENT PRACTICES. The F5 and Okta Solution for High Security SSO

RECOMMENDED DEPLOYMENT PRACTICES. The F5 and Okta Solution for High Security SSO July 2017 Contents Introduction...3 The Integrated Solution...3 Prerequisites...4 Configuration...4 Set up BIG-IP APM to be a SAML IdP...4 Create a self-signed certificate for signing SAML assertions...4

More information

Copyright. Copyright Ping Identity Corporation. All rights reserved. PingAccess Server documentation Version 4.

Copyright. Copyright Ping Identity Corporation. All rights reserved. PingAccess Server documentation Version 4. Server 4.3 Copyright 1 Copyright 2017 Ping Identity Corporation. All rights reserved. PingAccess Server documentation Version 4.3 June, 2017 Ping Identity Corporation 1001 17th Street, Suite 100 Denver,

More information

Cisco TEO Adapter Guide for Microsoft System Center Operations Manager 2007

Cisco TEO Adapter Guide for Microsoft System Center Operations Manager 2007 Cisco TEO Adapter Guide for Microsoft System Center Operations Manager 2007 Release 2.3 April 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com

More information

Cisco TEO Adapter Guide for

Cisco TEO Adapter Guide for Release 2.3 April 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part

More information

Access Manager Applications Configuration Guide. October 2016

Access Manager Applications Configuration Guide. October 2016 Access Manager Applications Configuration Guide October 2016 Legal Notice For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights,

More information

Polycom RealPresence Resource Manager System

Polycom RealPresence Resource Manager System Upgrade Guide 8.2.0 July 2014 3725-72106-001E Polycom RealPresence Resource Manager System Copyright 2014, Polycom, Inc. All rights reserved. No part of this document may be reproduced, translated into

More information

Security Provider Integration SAML Single Sign-On

Security Provider Integration SAML Single Sign-On Security Provider Integration SAML Single Sign-On 2017 Bomgar Corporation. All rights reserved worldwide. BOMGAR and the BOMGAR logo are trademarks of Bomgar Corporation; other trademarks shown are the

More information

Dell Secure Mobile Access Connect Tunnel Service User Guide

Dell Secure Mobile Access Connect Tunnel Service User Guide Dell Secure Mobile Access 11.4 Connect Tunnel Service 2016 Dell Inc. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described in this guide is furnished

More information

Quick Start Guide for SAML SSO Access

Quick Start Guide for SAML SSO Access Standalone Doc - Quick Start Guide Quick Start Guide for SAML SSO Access Cisco Unity Connection SAML SSO 2 Introduction 2 Understanding Service Provider and Identity Provider 3 Understanding SAML Protocol

More information

Configuration Guide - Single-Sign On for OneDesk

Configuration Guide - Single-Sign On for OneDesk Configuration Guide - Single-Sign On for OneDesk Introduction Single Sign On (SSO) is a user authentication process that allows a user to access different services and applications across IT systems and

More information

McAfee Cloud Identity Manager

McAfee Cloud Identity Manager BoxNet Cloud Connector Guide McAfee Cloud Identity Manager version 3.1 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed,

More information

Contents Introduction... 5 Configuring Single Sign-On... 7 Configuring Identity Federation Using SAML 2.0 Authentication... 29

Contents Introduction... 5 Configuring Single Sign-On... 7 Configuring Identity Federation Using SAML 2.0 Authentication... 29 Oracle Access Manager Configuration Guide 16 R1 March 2016 Contents Introduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 8 Installing Oracle HTTP Server...

More information

Security Provider Integration: SAML Single Sign-On

Security Provider Integration: SAML Single Sign-On Security Provider Integration: SAML Single Sign-On 2003-2018 BeyondTrust, Inc. All Rights Reserved. BEYONDTRUST, its logo, and JUMP are trademarks of BeyondTrust, Inc. Other trademarks are the property

More information

Quest ChangeAuditor 5.1 FOR LDAP. User Guide

Quest ChangeAuditor 5.1 FOR LDAP. User Guide Quest ChangeAuditor FOR LDAP 5.1 User Guide Copyright Quest Software, Inc. 2010. All rights reserved. This guide contains proprietary information protected by copyright. The software described in this

More information

Installation and Configuration Guide for Visual Voic Release 8.5

Installation and Configuration Guide for Visual Voic Release 8.5 Installation and Configuration Guide for Visual Voicemail Release 8.5 Revised October 08, 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com

More information

MyWorkDrive SAML v2.0 Azure AD Integration Guide

MyWorkDrive SAML v2.0 Azure AD Integration Guide MyWorkDrive SAML v2.0 Azure AD Integration Guide Contents Introduction... 1 Configuring an Enterprise Application for SAML SSO... 1 Service Provider Configuration... 10 SP-Initiated SSO... Error! Bookmark

More information

Oracle Access Manager Configuration Guide

Oracle Access Manager Configuration Guide Oracle Access Manager Configuration Guide 16 R2 September 2016 Contents Introduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 7 Installing Oracle HTTP Server...

More information

Oracle Cloud. Using the Google Calendar Adapter Release 16.3 E

Oracle Cloud. Using the Google Calendar Adapter Release 16.3 E Oracle Cloud Using the Google Calendar Adapter Release 16.3 E68599-05 September 2016 Oracle Cloud Using the Google Calendar Adapter, Release 16.3 E68599-05 Copyright 2015, 2016, Oracle and/or its affiliates.

More information

Integration Guide. BlackBerry Workspaces. Version 1.0

Integration Guide. BlackBerry Workspaces. Version 1.0 Integration Guide BlackBerry Workspaces Version 1.0 Published: 2017-12-27 SWD-20171227025930338 Contents Overview... 4 Okta... 5 Add BlackBerry Workspaces to your Okta account...5 Configure BlackBerry

More information

October 14, SAML 2 Quick Start Guide

October 14, SAML 2 Quick Start Guide October 14, 2017 Copyright 2013, 2017, Oracle and/or its affiliates. All rights reserved. This software and related documentation are provided under a license agreement containing restrictions on use and

More information

Cisco Jabber for Android 10.5 Quick Start Guide

Cisco Jabber for Android 10.5 Quick Start Guide Cisco Jabber for Android 10.5 Quick Start Guide Revised: August 21, 2014, Cisco Jabber Welcome to Cisco Jabber. Use this guide to set up the app and use some key features. After setup, learn more by viewing

More information

CA SiteMinder Federation

CA SiteMinder Federation CA SiteMinder Federation Partnership Federation Guide 12.52 This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to as the Documentation

More information

Setting Up Resources in VMware Identity Manager 3.1 (On Premises) Modified JUL 2018 VMware Identity Manager 3.1

Setting Up Resources in VMware Identity Manager 3.1 (On Premises) Modified JUL 2018 VMware Identity Manager 3.1 Setting Up Resources in VMware Identity Manager 3.1 (On Premises) Modified JUL 2018 VMware Identity Manager 3.1 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/

More information

October J. Polycom Cloud Services Portal

October J. Polycom Cloud Services Portal October 2018 3725-42461-001J Polycom Cloud Services Portal Copyright 2018, Polycom, Inc. All rights reserved. No part of this document may be reproduced, translated into another language or format, or

More information

CA SiteMinder. Federation Manager Guide: Legacy Federation. r12.5

CA SiteMinder. Federation Manager Guide: Legacy Federation. r12.5 CA SiteMinder Federation Manager Guide: Legacy Federation r12.5 This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to as the Documentation

More information

McAfee Cloud Identity Manager

McAfee Cloud Identity Manager Syncplicity Cloud Connector Guide McAfee Cloud Identity Manager version 3.1 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted,

More information

One Identity Active Roles 7.2. Azure AD and Office 365 Management Administrator Guide

One Identity Active Roles 7.2. Azure AD and Office 365 Management Administrator Guide One Identity Active Roles 7.2 Azure AD and Office 365 Management Administrator Copyright 2017 One Identity LLC. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright.

More information

SonicWall Secure Mobile Access SMA 500v Virtual Appliance 8.6. Getting Started Guide

SonicWall Secure Mobile Access SMA 500v Virtual Appliance 8.6. Getting Started Guide SonicWall Secure Mobile Access SMA 500v Virtual Appliance 8.6 Getting Started Guide Copyright 2017 SonicWall Inc. All rights reserved. SonicWall is a trademark or registered trademark of SonicWall Inc.

More information

SafeNet Authentication Service

SafeNet Authentication Service SafeNet Authentication Service Integration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV. and/or its subsidiaries who shall have and keep

More information