Quick Connection Guide
|
|
- Austin Curtis
- 5 years ago
- Views:
Transcription
1 Amazon Web Services Connector Version 1.0 Quick Connection Guide
2 Ping Identity Corporation. All rights reserved. PingFederate Amazon Web Services Connector Quick Connection Guide Version 1.0 January, 2014 Ping Identity Corporation th Street, Suite 100 Denver, CO U.S.A. Phone: ( outside North America) Fax: Web Site: Trademarks Ping Identity, the Ping Identity logo, PingFederate, PingOne, PingConnect, and PingEnable are registered trademarks of Ping Identity Corporation ( Ping Identity ). All other trademarks or registered trademarks are the property of their respective owners. Disclaimer The information provided in this document is provided as is without warranty of any kind. Ping Identity disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Ping Identity or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Ping Identity or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply. Document Lifetime Ping Identity may occasionally update online documentation between releases of the related software. Consequently, if this PDF was not downloaded recently, it may not contain the most up-to-date information. Please refer to the online documentation at documentation.pingidentity.com for the most current information. From the Web site, you may also download and refresh this PDF if it has been updated, as indicated by a change in this date: January 10, 2014.
3 Contents Preface About This Manual Intended Audience Summary Text Conventions Other Documentation Chapter 1 Introduction Connector Overview Setup Summary System Requirements ZIP Manifest Chapter 2 Installation and Setup Connector Installation Configuring Server Settings Downloading AWS SAML Metadata Obtaining AWS Access Keys Creating a SAML Identity Provider and Role in AWS Chapter 3 Connecting to Amazon Web Services Configuring a Connection Assigning Groups To assign users to a provisioning group at AWS: Exporting Metadata Workday Quick Connection Guide iii
4 Preface About This Manual Intended Audience Summary This Guide provides procedures for configuring a PingFederate server to enable secure Internet single sign-on (SSO) for an organization s user accounts with Amazon Web Services (AWS). The Guide also provides Outbound Provisioning (formerly Saas Provisioning) configuration information relevant to Amazon Web Services. This Guide is intended for security and network administrators and other IT professionals responsible for identity management among both internal and external business entities. For installation and configuration, some familiarity with PingFederate operations and the administrative console, as well as Amazon administration, is highly recommended. If you are not familiar with cross-domain Internet SSO or identity federation, it might be helpful to browse through the first few sections of Getting Started and the Administrator s Manual in your PingFederate installation before continuing. The Guide consists of the following chapters: Chapter 1, Introduction An overview of Connector features, system requirements, and use cases. Chapter 2, Installation and Setup Installation and preliminary configuration instructions. Amazon Quick Setup Guide 1
5 Chapter Preface Chapter 3, Connecting to Amazon Web Services How to set up PingFederate to connect to Amazon Web Services. Text Conventions This document uses the text conventions identified below. Table 1: Text Conventions Convention Fixed Width Blue text Italic Description Indicates text that must be typed exactly as shown in the instructions. Also used to represent program code, file names, and directory paths. Indicates hypertext links. Used for emphasis and document titles. [text] Used for procedures where only one step is required. Sans serif Sans serif bold Identifies descriptive text on a user-interface screen. Example: Print Document dialog Identifies menu items, navigational links, or buttons. For example: Click Save. Other Documentation This Guide refers frequently to information contained in manuals that are part of the core PingFederate distribution. The documents listed below are available under Product Documentation at pingidentity.com. Tip: PingFederate provides context-sensitive Help. Click Help in the upper-right portion of the administrative console for immediate, relevant guidance and links to related information. Getting Started Provides an introduction to secure Internet SSO and PingFederate, including background information about federated identity management and standards, product installation instructions, and a primer on using the PingFederate administrative console. Administrator s Manual Provides key concepts as well as detailed instructions for using the PingFederate administrative console also connectionendpoint and other Web-application developer information, a glossary, and a list of common acronyms. 2 PingFederate
6 Chapter 1 Introduction Connector Overview The PingFederate Amazon Web Services (AWS) Connector extends PingFederate capabilities, enabling enterprises to provision its users and groups to Amazon Web Services. This AWS Connector includes a quick connection template to easily set up a single sign-on (SSO) connection requiring AWS provisioning. The connector makes use of the Amazon Web Services API v1.5 to communicate with Amazon Web Services. The PingFederate administrative console uses a quick-connection template to configure most of the settings needed to connect to Amazon Web Services (AWS) for SSO and provisioning. Choose the AWS template on the initial Connection Template screen during configuration of a Service Provider (SP) connection. This document provides instructions for filling in site-specific connection settings. Once the settings are complete, you can configure provisioning settings according to your deployment needs. Before configuring an SSO connection to AWS, you must configure (or verify) several system settings in PingFederate. You must also download SAML 2.0 metadata from the AWS administrative site. Tip: This Guide is intended to provide only configuration instructions associated with using the quick-connection template for SSO to AWS. After completing the SSO configuration, if you are including provisioning for the connection, please refer to Configuring Outbound Provisioning in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or see the associated Help pages during the configuration). Amazon Quick Setup Guide 3
7 Chapter 1 Introduction Setup Summary System Requirements ZIP Manifest The general steps involved in this process are outlined below, including references to applicable sections of this Guide and other PingFederate documents: 1. Install the Connector see Connector Installation on page Configure Server Settings in PingFederate to enable SSO quick connections see Configuring Server Settings on page Download AWS SAML Metadata to configure SSO endpoints and other information see Downloading AWS SAML Metadata on page Obtain AWS Access Keys to authenticate provisioning requests see Obtaining AWS Access Keys on page Create an AWS SAML Identity Provider and Role to configure an SSO connection to Amazon see Creating a SAML Identity Provider and Role in AWS on page Use the quick-connection template to configure an SSO and provisioning connection to AWS see Configuring a Connection on page 9. The AWS Connector requires the installation of PingFederate or higher. The distribution ZIP file for the AWS Connector contains the following: ReadMeFirst.pdf contains links to this online documentation. /legal contains this document: Legal.pdf copyright and license information. /dist contains libraries needed for the Connector: pf-aws-quickconnection-1.0.jar PingFederate Amazon Web Services (AWS) Connector. aws-java-sdk jar Amazon API JAR file. 4 PingFederate
8 Chapter 2 Installation and Setup Connector Installation These sections provide instructions for setting up PingFederate to use the AWS Connector. To install the AWS Connector: 1. Stop the PingFederate server if it is running. 2. Unzip the AWS Connector distribution ZIP file into a holding directory. 3. From the dist directory, copy the files: pf-aws-quickconnection-1.0.jar aws-java-sdk jar into the directory: <pf_install>/pingfederate/server/default/deploy 4. Edit the run.properties file located in <pf_install>/ pingfederate/bin, changing the property pf.provisioner.mode to STANDALONE, for example: pf.provisioner.mode=standalone The property is located near the end of the file. Note: For information about using the FAILOVER setting for runtime deployment, see the PingFederate Server Clustering Guide. 5. Start the PingFederate server. Amazon Quick Setup Guide 5
9 Chapter 2 Installation and Setup Configuring Server Settings If you have not yet used PingFederate, follow the instructions under Running PingFederate for the First Time in the "Installation" chapter of Getting Started. To enable quick connections to AWS, several selections (described in the following procedure) are required when you reach Roles and Protocols in the Configuring My Server screen sequence. If you have already run and configured the PingFederate server, you may need to verify or change settings on the Roles and Protocols screen, including enabling Outbound Provisioning, as described in the following procedure. To enable SSO quick connections to AWS: 1. On the Roles and Protocols screen, ensure that the IdP role is enabled and SAML 2.0 and Outbound Provisioning are selected for that role. (Click Server Settings on the Main Menu to locate this screen after initial installation.) Tip: This setting enables provisioning globally for all connections to supported providers. However, you have a choice of including provisioning or not during the configuration of specific connections. 6 PingFederate
10 Downloading AWS SAML Metadata 2. Click Next to continue the Configuring My Server task (or Save for an existing configuration). Note: Enabling Outbound Provisioning adds a new screen to the task flow, requiring selection of a database used to monitor provisioning status. For more information, see Configuring Outbound Provisioning Settings in the "System Settings" chapter of the PingFederate Administrator s Guide (or click Help from the configuration screen). Downloading AWS SAML Metadata The AWS quick-connection template uses SAML 2.0 metadata from AWS to configure SSO endpoints and other information. Download the AWS metadata XML file before creating the AWS connection in PingFederate. To download SAML 2.0 Metadata for AWS 1. Access the following URL: 2. Save the XML file to a desired location. Obtaining AWS Access Keys You need to specify a token and secret while configuring AWS provisioning in PingFederate. These credentials are used to authenticate provisioning requests. Amazon Quick Setup Guide 7
11 Chapter 2 Installation and Setup To obtain AWS access keys 1. Using your AWS administration account, access the AWS Management Console. 2. Copy the Access Key ID and the Access Key Secret. For information on getting your access key ID and secret access key, see the AWS documentation ( AWSSimpleQueueService/latest/SQSGettingStartedGuide/ AWSCredentials.html). Note: Complete the AWS SSO configuration by configuring the SP connection (see the section Connecting to Amazon Web Services ). Creating a SAML Identity Provider and Role in AWS You need to create a SAML Identity Provider and Role using your AWS Administrative account to use when configuring an SSO connection. The Identity Provider setup requires the SAML 2.0 Metadata file from the SP connection that SSO is initiated from. For more information on creating SAML Identity Providers on AWS, see the following AWS Documentation: For more information on creating Roles in AWS, see the following AWS Documentation: PingFederate
12 Chapter 3 Connecting to Amazon Web Services Configuring a Connection To complete this configuration, use this section to configure a secure SSO connection for SSO and provisioning to Amazon Web Services (AWS). Use the following procedure to configure a quick connection for SSO and provisioning to Amazon Web Services. Tip: This procedure provides instructions for configuring minimum required connection settings; the instructions skip setup screens in which all necessary information is automatically configured (or in which standard defaults are used). The administrative console guides you to required configuration steps automatically by displaying prompts at entry points for the task flows. In general, you may add or change settings on all screens to suit any special requirements. To configure a connection to AWS 1. If you have not already done so, follow the instructions under Configuring Server Settings on page If you have not already done so, use PingFederate to configure the IdP adapter you want to use. For information and instructions, see Configuring IdP Adapters in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide. 3. On the Main Menu, click Create New under SP Connections in the IdP Configuration section. Amazon Quick Setup Guide 9
13 Chapter 3 Connecting to Amazon Web Services 4. On the Connection Template screen, select AWS in the Connection Template drop-down list. If this selection is not available, verify the Connector installation and restart PingFederate. 5. Click Browse to locate and select the AWS metadata file that you downloaded in the Downloading AWS SAML Metadata section and click Next. 6. On the Connection Type screen, ensure you select both Browser SSO Profiles and Outbound Provisioning and click Next. 7. (Optional) On the Connection Options screen, ensure you select the Browser SSO option. 8. Click Next. 9. On the General Info screen, ensure the Partner s Entity ID (Connection ID) and Connection Name are accurate. Change details if required and click Next. 10. Click Configure Browser SSO on the Browser SSO screen. 10 PingFederate
14 Configuring a Connection 11. On the Assertion Creation screen, click Configure Assertion Creation. 12. On the IdP Adapter Mapping screen, click Map New Adapter Instance and map the IdP Adapter Instance you defined earlier in this procedure. When you return to the IdP Adapter Mapping screen, click Done. This configuration is site-dependent and cannot be pre-configured. For detailed information and instructions, see IdP Adapter Mapping in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or refer to the Help pages). 13. On the Assertion Creation screen, click Next. Amazon Quick Setup Guide 11
15 Chapter 3 Connecting to Amazon Web Services 14. On the Protocols Settings screen, click Done. Tip: This task is completely configured for you, but click Configure Protocol Settings if you want to review the setup or make changes to any special AWS requirements. For configuration information, see sections under Configuring Protocol Settings in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or use the context-sensitive Help). 15. On the Browser SSO screen, click Next. 16. On the Credentials screen, click Configure Credentials. 17. On the Digital Signature Settings screen, select a signing certificate. For more information, see Configuring Digital Signature Settings in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or click Help). If you have not yet created or imported a signing certificate, click Manage Certificates and do so now (see Digital Signing and Decryption Keys and Certificates in the "Security Management" chapter of the PingFederate Administrator s Guide). 18. Click Done and then Next on the Credentials screen. 19. On the Outbound Provisioning screen, click Configure Provisioning. 20. On the Target screen, enter the AWS credentials from the Obtaining AWS Access Keys section by entering the Access Key ID into the accesskey field and entering the Secret Access Key into the accesskeysecret field. 21. Click Next to continue the provisioning configuration. For more information see the sections under Configuring Outbound Provisioning in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or refer to the Help pages). Tip: If you are not ready to complete the provisioning configuration, you can click Save and return to the configuration screen later (from the Manage Connections screen--click Manage All SP on the Main Menu). 12 PingFederate
16 Configuring a Connection 22. When you return to the Outbound Provisioning screen, click Next. 23. On the Activation and Summary screen, click Save. For information about how to map users into groups, see Assigning Groups next. For important information about using this screen, see Editing and Activating a Connection in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide (or click Help). 24. Export the metadata for the SP connection you just created to use when creating your SAML Identity Provider in AWS. For more information, see Exporting Metadata in the "System Administration" chapter of the PingFederate Administrator s Guide (or click Help). 25. Create a SAML Identity Provider and Role in AWS. For information on creating a SAML Identity Provider and Roles in AWS, see Creating a SAML Identity Provider and Role in AWS on page On the Main Menu, select your SP Connection. 27. On the Activation and Summary page, select Attribute Contract in the Assertion Creation section. 28. On the Attribute Contract screen, in addition to SAML_SUBJECT, the following attributes are required: Enter each attribute and click Add. 30. Once the attributes are added, click Done. 31. On the IdP Adapter Mapping page, select the adapter you updated the attribute contract for. 32. On the Attribute Contract Fulfillment page, complete the configuration for the new contract attributes and click Done. Amazon Quick Setup Guide 13
17 Chapter 3 Connecting to Amazon Web Services Assigning Groups 33. On the IdP Adapter Mapping page, click Done. 34. On the Assertion Creation page, click Done. 35. On the Browser SSO page, click Save. On the Attribute Mapping screen in the provisioning configuration flow, one provisioning field for AWS requires special mapping: Groups Used to assign users in the provisioning channel to one or more groups. The following procedure provides details on mapping this field to accomplish the associated provisioning feature where needed. To assign users to a provisioning group at AWS: 1. On the Attribute Mapping screen, click Edit for the Groups field. 2. On the Specify Attribute Mapping screen, select the Root Object Class and add the attribute containing the group(s) to which the user belongs and corresponding to groups to be assigned at AWS. 3. In the Options section of the screen, select Extract CN from DN in the Parsing drop-down list. 4. For more information on Mapping Attributes, see Mapping Attributes in the "Identity Provider SSO Configuration" chapter of the PingFederate Administrator s Guide 14 PingFederate
18 Exporting Metadata Exporting Metadata For SAML deployments PingFederate supports the export and import of metadata files, which federation partners can use to expedite their configuration. Once your AWS Quick Connection is configured, the metadata needs to be exported. For more information, see Exporting Metadata in the "System Administration" chapter of the PingFederate Administrator s Guide (or click Help). Amazon Quick Setup Guide 15
Quick Connection Guide
WebEx Connector Version 1.0.1 Quick Connection Guide 2014 Ping Identity Corporation. All rights reserved. PingFederate WebEx Connector Quick Connection Guide Version 1.0.1 March, 2014 Ping Identity Corporation
More informationDropbox Connector. Version 2.0. User Guide
Dropbox Connector Version 2.0 User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate Dropbox Connector User Guide Version 2.0 February, 2016 Ping Identity Corporation 1001 17th Street,
More informationZendesk Connector. Version 2.0. User Guide
Zendesk Connector Version 2.0 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate Zendesk Connector Quick Connection Guide Version 2.0 November, 2015 Ping Identity Corporation
More informationWebEx Connector. Version 2.0. User Guide
WebEx Connector Version 2.0 User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate WebEx Connector User Guide Version 2.0 May, 2016 Ping Identity Corporation 1001 17th Street, Suite
More informationSlack Connector. Version 2.0. User Guide
Slack Connector Version 2.0 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate Slack Connector User Guide Version 2.0 December, 2015 Ping Identity Corporation 1001 17th Street,
More informationBox Connector. Version 2.0. User Guide
Box Connector Version 2.0 User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate Box Connector User Guide Version 2.0 March, 2016 Ping Identity Corporation 1001 17th Street, Suite
More informationCoreBlox Token Translator. Version 1.0. User Guide
CoreBlox Token Translator Version 1.0 User Guide 2014 Ping Identity Corporation. All rights reserved. PingFederate CoreBlox Token Translator User Guide Version 1.0 April, 2014 Ping Identity Corporation
More informationQuick Connection Guide
ServiceNow Connector Version 1.0 Quick Connection Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate ServiceNow Connector Quick Connection Guide Version 1.0 August, 2015 Ping Identity
More informationCoreBlox Integration Kit. Version 2.2. User Guide
CoreBlox Integration Kit Version 2.2 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate CoreBlox Integration Kit User Guide Version 2.2 November, 2015 Ping Identity Corporation
More informationWeb Access Management Token Translator. Version 2.0. User Guide
Web Access Management Token Translator Version 2.0 User Guide 2014 Ping Identity Corporation. All rights reserved. PingFederate Web Access Management Token Translator User Guide Version 2.0 August, 2014
More informationSSO Integration Overview
SSO Integration Overview 2006-2014 Ping Identity Corporation. All rights reserved. PingFederate SSO Integration Overview Version 7.2 June, 2014 Ping Identity Corporation 1001 17th Street, Suite 100 Denver,
More informationOAM Integration Kit. Version 3.0. User Guide
OAM Integration Kit Version 3.0 User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate OAM Integration Kit User Guide Version 3.0 May, 2016 Ping Identity Corporation 1001 17th Street,
More informationOpenID Cloud Identity Connector. Version 1.3.x. User Guide
OpenID Cloud Identity Connector Version 1.3.x User Guide 2016 Ping Identity Corporation. All rights reserved. PingFederate OpenID Cloud Identity Connector User Guide Version 1.3.x January, 2016 Ping Identity
More informationQuick Connection Guide
Egnyte Connector Version 1.0 Quick Connection Guide 2015 Ping I dentity Corporation. A ll rights reserved. PingFederate Egnyte Connector Quick Connection Guide Version 1.0 February, 2015 Ping Identity
More informationWebSphere Integration Kit. Version User Guide
WebSphere Integration Kit Version 2.1.1 User Guide 2012 Ping Identity Corporation. All rights reserved. PingFederate WebSphere User Guide Version 2.1.1 December, 2012 Ping Identity Corporation 1001 17th
More informationVersion 7.x. Quick-Start Guide
Version 7.x Quick-Start Guide 2005-2013 Ping Identity Corporation. All rights reserved. PingFederate Quick-Start Guide Version 7.x September, 2013 Ping Identity Corporation 1001 17th Street, Suite 100
More information.NET Integration Kit. Version User Guide
.NET Integration Kit Version 2.5.1 User Guide 2012 Ping Identity Corporation. All rights reserved. PingFederate.NET Integration Kit User Guide Version 2.5.1 December, 2012 Ping Identity Corporation 1001
More informationGoogle Apps Connector. Version User Guide
Google Apps Connector Version 3.0.4 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate Google Apps Connector User Guide Version 3.0.4 May, 2015 Ping Identity Corporation 1001
More informationUpgrade Utility. Version 7.3. User Guide
Upgrade Utility Version 7.3 User Guide 2015 Ping Identity Corporation. All rights reserved. PingFederate Upgrade Utility User Guide Version 7.3 January, 2015 Ping Identity Corporation 1001 17 th Street,
More informationIWA Integration Kit. Version 3.1. User Guide
IWA Integration Kit Version 3.1 User Guide 2013 Ping Identity Corporation. All rights reserved. PingFederate IWA Integration Kit User Guide Version 3.1 June, 2013 Ping Identity Corporation 1001 17th Street,
More informationPingOne. How to Set Up a PingFederate Connection to the PingOne Dock. Quick Start Guides. Version 1.1 December Created by: Ping Identity Support
PingOne Quick Start Guides How to Set Up a PingFederate Connection to the PingOne Dock Version 1.1 December 2014 Created by: Ping Identity Support Disclaimer This document is proprietary and not for general
More informationPingFederate 6.6. Upgrade Utility. User Guide
PingFederate 6.6 Upgrade Utility User Guide 2011 Ping Identity Corporation. All rights reserved. PingFederate Upgrade Utility User Guide Version 6.6 December, 2011 Ping Identity Corporation 1001 17 th
More informationOffice 365 Connector 2.1
Office 365 Connector 2.1 Contents 2 Contents Copyright... 3 PingFederate Office 365 Connector Guide 2.1... 4 Connector overview...4 System requirements...4 Choose a SSO configuration path...4 Installation
More informationGoogle Apps Connector
Google Apps Connector Version 3.1 User Guide Copyright 1 Copyright 2017 Ping Identity Corporation. All rights reserved. PingFederate Google Apps Connector User Guide Version 3.1 December, 2017 Ping Identity
More informationPingFederate Upgrade Utility. User Guide
PingFederate 6.4.1 Upgrade Utility User Guide 2011 Ping Identity Corporation. All rights reserved. PingFederate Upgrade Utility User Guide Version 6.4.1 February, 2011 Ping Identity Corporation 1099 18th
More informationSDK Developer s Guide
SDK Developer s Guide 2005-2013 Ping Identity Corporation. All rights reserved. PingFederate SDK Developer s Guide Version 7.1 August, 2013 Ping Identity Corporation 1001 17 th Street, Suite 100 Denver,
More informationRSA SecurID Ready Implementation Guide. Last Modified: December 13, 2013
Ping Identity RSA SecurID Ready Implementation Guide Partner Information Last Modified: December 13, 2013 Product Information Partner Name Ping Identity Web Site www.pingidentity.com Product Name PingFederate
More informationPingFederate 6.3. Upgrade Utility. User Guide
PingFederate 6.3 Upgrade Utility User Guide 2010 Ping Identity Corporation. All rights reserved. PingFederate Upgrade Utility User Guide Version 6.3 September, 2010 Ping Identity Corporation 1099 18th
More informationX.509 Certificate Integration Kit 1.2
X.509 Certificate Integration Kit 1.2 Contents 2 Contents PingFederate X.509 Certificate Integration Kit 1.2... 3 Intended audience... 3 System requirements...3 SSO processing... 3 Installation and setup...4
More informationIntegration Guide. SafeNet Authentication Manager. Using SAM as an Identity Provider for PingFederate
SafeNet Authentication Manager Integration Guide Technical Manual Template Release 1.0, PN: 000-000000-000, Rev. A, March 2013, Copyright 2013 SafeNet, Inc. All rights reserved. 1 Document Information
More informationPingFederate 6. Getting Started
PingFederate 6 Getting Started 2009 Ping Identity Corporation. All rights reserved. Part Number 3007-398 Version 6.0 April, 2009 Ping Identity Corporation 1099 18th Street, Suite 2950 Denver, CO 80202
More informationServer 8.3. PingFederate CORS Support
Server 8.3 PingFederate CORS Support Copyright 1 2017 Ping Identity Corporation. All rights reserved. PingFederate CORS Support April 18, 2017 Ping Identity Corporation 1001 17th Street, Suite 100 Denver,
More information<Partner Name> <Partner Product> RSA SECURID ACCESS Implementation Guide. PingIdentity PingFederate 8
RSA SECURID ACCESS Implementation Guide PingIdentity John Sammon & Gina Salvalzo, RSA Partner Engineering Last Modified: February 27 th, 2018 Solution Summary Ping Identity
More informationPolycom RealPresence Access Director System, Virtual Edition
Getting Started Guide Version 4.0 July 2014 3725-78702-002D Polycom RealPresence Access Director System, Virtual Edition Copyright 2014, Polycom, Inc. All rights reserved. No part of this document may
More informationSDK Developer s Guide
SDK Developer s Guide 2005-2012 Ping Identity Corporation. All rights reserved. PingFederate SDK Developer s Guide Version 6.10 October, 2012 Ping Identity Corporation 1001 17 th Street, Suite 100 Denver,
More informationRelease 3.0. Delegated Admin Application Guide
Release 3.0 Delegated Admin Application Guide Notice PingDirectory Product Documentation Copyright 2004-2018 Ping Identity Corporation. All rights reserved. Trademarks Ping Identity, the Ping Identity
More informationNimsoft Service Desk. Single Sign-On Configuration Guide. [assign the version number for your book]
Nimsoft Service Desk Single Sign-On Configuration Guide [assign the version number for your book] Legal Notices Copyright 2012, CA. All rights reserved. Warranty The material contained in this document
More informationPartner Center: Secure application model
Partner Center: Secure application model The information provided in this document is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including
More informationIntegration Guide. PingFederate SAML Integration Guide (SP-Initiated Workflow)
Integration Guide PingFederate SAML Integration Guide (SP-Initiated Workflow) Copyright Information 2018. SecureAuth is a registered trademark of SecureAuth Corporation. SecureAuth s IdP software, appliances,
More informationSAML SSO Okta Identity Provider 2
SAML SSO Okta Identity Provider SAML SSO Okta Identity Provider 2 Introduction 2 Configure Okta as Identity Provider 2 Enable SAML SSO on Unified Communications Applications 4 Test SSO on Okta 4 Revised:
More informationIntroduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 7 Installing Oracle HTTP Server...
Oracle Access Manager Configuration Guide for On-Premises Version 17 October 2017 Contents Introduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 7 Installing
More informationCloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0
Cloud Access Manager 8.1.3 How to Configure for SSO to SAP Copyright 2017 One Identity LLC. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described
More informationSafeNet Authentication Service
SafeNet Authentication Service Integration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV. and/or its subsidiaries who shall have and keep
More informationQuick Start Guide for SAML SSO Access
Quick Start Guide Quick Start Guide for SAML SSO Access Cisco Unity Connection SAML SSO 2 Introduction 2 Understanding Service Provider and Identity Provider 2 Understanding SAML Protocol 3 SSO Mode 4
More informationApril Understanding Federated Single Sign-On (SSO) Process
April 2013 Understanding Federated Single Sign-On (SSO) Process Understanding Federated Single Sign-On Process (SSO) Disclaimer The following is intended to outline our general product direction. It is
More informationConfiguring Single Sign-on from the VMware Identity Manager Service to Marketo
Configuring Single Sign-on from the VMware Identity Manager Service to Marketo VMware Identity Manager JANUARY 2016 V1 Configuring Single Sign-On from VMware Identity Manager to Marketo Table of Contents
More informationSafeNet Authentication Service
SafeNet Authentication Service Integration Guide Using SafeNet Authentication Service as an Identity Provider for Tableau Server All information herein is either public information or is the property of
More informationSAML-Based SSO Configuration
Prerequisites, page 1 SAML SSO Configuration Task Flow, page 5 Reconfigure OpenAM SSO to SAML SSO Following an Upgrade, page 9 SAML SSO Deployment Interactions and Restrictions, page 9 Prerequisites NTP
More informationServer Clustering Guide
Server Clustering Guide 2006-2014 Ping Identity Corporation. All rights reserved. PingFederate Server Clustering Guide Version 7.2 June, 2014 Ping Identity Corporation 1001 17 th Street, Suite 100 Denver,
More informationVideoscape Distribution Suite Software Installation Guide
First Published: August 06, 2012 Last Modified: September 03, 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800
More informationCSP PARTNER APPLICATION OVERVIEW Multi-tenant application model
CSP PARTNER APPLICATION OVERVIEW Multi-tenant application model The information provided in this document is provided "as is" without warranty of any kind. Microsoft disclaims all warranties, either express
More informationNovell Access Manager
Setup Guide AUTHORIZED DOCUMENTATION Novell Access Manager 3.1 SP3 February 02, 2011 www.novell.com Novell Access Manager 3.1 SP3 Setup Guide Legal Notices Novell, Inc., makes no representations or warranties
More informationSAML-Based SSO Configuration
Prerequisites, page 1 SAML SSO Configuration Workflow, page 5 Reconfigure OpenAM SSO to SAML SSO After an Upgrade, page 9 Prerequisites NTP Setup In SAML SSO, Network Time Protocol (NTP) enables clock
More informationSafeNet Authentication Manager
SafeNet Authentication Manager Integration Guide Using SafeNet Authentication Manager as an Identity Provider for F5 BIG- IP Access Policy Manager All information herein is either public information or
More informationPingFederate 5.0. Release Notes
PingFederate 5.0 Release Notes 2008 Ping Identity Corporation. All rights reserved. January, 2008 Ping Identity Corporation 1099 18th Street, Suite 2950 Denver, CO 80202 U.S.A. Phone: 877.898.2905 (+1
More informationCisco TEO Adapter Guide for SAP Java
Release 2.3 April 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part
More informationPaging and Loud Ringing with VVX600 and Algo 8180
SOLUTION MANUAL September 2015 Rev A Paging and Loud Ringing with VVX600 and Algo 8180 Application Note Polycom, Inc. 1 Paging and Loud Ringing with VVX600 and Algo 8180 Copyright 2015, Polycom, Inc. All
More informationSetting Up Resources in VMware Identity Manager (SaaS) Modified 15 SEP 2017 VMware Identity Manager
Setting Up Resources in VMware Identity Manager (SaaS) Modified 15 SEP 2017 VMware Identity Manager Setting Up Resources in VMware Identity Manager (SaaS) You can find the most up-to-date technical documentation
More informationAbout This Document 3. Overview 3. System Requirements 3. Installation & Setup 4
About This Document 3 Overview 3 System Requirements 3 Installation & Setup 4 Step By Step Instructions 5 1. Login to Admin Console 6 2. Show Node Structure 7 3. Create SSO Node 8 4. Create SAML IdP 10
More informationMcAfee Cloud Identity Manager
Marketo Cloud Connector Guide McAfee Cloud Identity Manager version 3.5 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed,
More informationRealPresence Platform Director
RealPresence CloudAXIS Suite Administrators Guide Software 1.3.1 ADMINISTRATOR GUIDE Software 1.8 December 2014 3725-66008-001 Rev C RealPresence Platform Director Polycom, Inc. 1 Copyright 2014, Polycom,
More informationMcAfee Cloud Identity Manager
WebExConnect Cloud Connector Guide McAfee Cloud Identity Manager version 3.5 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted,
More informationSetting Up Resources in VMware Identity Manager (On Premises) Modified on 30 AUG 2017 VMware AirWatch 9.1.1
Setting Up Resources in VMware Identity Manager (On Premises) Modified on 30 AUG 2017 VMware AirWatch 9.1.1 Setting Up Resources in VMware Identity Manager (On Premises) You can find the most up-to-date
More informationSafeNet Authentication Manager
SafeNet Authentication Manager Integration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV. and/or its subsidiaries who shall have and keep
More informationEAM Portal User's Guide
EAM Portal 9.0.2 User's Guide Copyright 2017 One Identity LLC. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described in this guide is furnished
More informationSafeNet Authentication Service
SafeNet Authentication Service Integration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV. and/or its subsidiaries who shall have and keep
More informationSetting Up Resources in VMware Identity Manager
Setting Up Resources in VMware Identity Manager VMware Identity Manager 2.7 This document supports the version of each product listed and supports all subsequent versions until the document is replaced
More informationMcAfee Cloud Identity Manager
Google Cloud Connector Guide McAfee Cloud Identity Manager version 1.1 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed,
More informationOne Identity Active Roles 7.2
One Identity December 2017 This document provides information about the Active Roles Add_on Manager7.2. About Active Roles Add_on Manager New features Known issues System requirements Getting started with
More informationEXTENDING SINGLE SIGN-ON TO AMAZON WEB SERVICES BEST PRACTICES FOR IDENTITY FEDERATION IN AWS E-BOOK
EXTENDING SINGLE SIGN-ON TO AMAZON WEB SERVICES BEST PRACTICES FOR IDENTITY FEDERATION IN AWS 03 EXECUTIVE OVERVIEW 05 INTRODUCTION 07 MORE CLOUD DEPLOYMENTS MEANS MORE ACCESS 09 IDENTITY FEDERATION IN
More informationSetting Up Resources in VMware Identity Manager. VMware Identity Manager 2.8
Setting Up Resources in VMware Identity Manager VMware Identity Manager 2.8 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have comments
More informationRECOMMENDED DEPLOYMENT PRACTICES. The F5 and Okta Solution for High Security SSO
July 2017 Contents Introduction...3 The Integrated Solution...3 Prerequisites...4 Configuration...4 Set up BIG-IP APM to be a SAML IdP...4 Create a self-signed certificate for signing SAML assertions...4
More informationCopyright. Copyright Ping Identity Corporation. All rights reserved. PingAccess Server documentation Version 4.
Server 4.3 Copyright 1 Copyright 2017 Ping Identity Corporation. All rights reserved. PingAccess Server documentation Version 4.3 June, 2017 Ping Identity Corporation 1001 17th Street, Suite 100 Denver,
More informationCisco TEO Adapter Guide for Microsoft System Center Operations Manager 2007
Cisco TEO Adapter Guide for Microsoft System Center Operations Manager 2007 Release 2.3 April 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com
More informationCisco TEO Adapter Guide for
Release 2.3 April 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com Tel: 408 526-4000 800 553-NETS (6387) Fax: 408 527-0883 Text Part
More informationAccess Manager Applications Configuration Guide. October 2016
Access Manager Applications Configuration Guide October 2016 Legal Notice For information about legal notices, trademarks, disclaimers, warranties, export and other use restrictions, U.S. Government rights,
More informationPolycom RealPresence Resource Manager System
Upgrade Guide 8.2.0 July 2014 3725-72106-001E Polycom RealPresence Resource Manager System Copyright 2014, Polycom, Inc. All rights reserved. No part of this document may be reproduced, translated into
More informationSecurity Provider Integration SAML Single Sign-On
Security Provider Integration SAML Single Sign-On 2017 Bomgar Corporation. All rights reserved worldwide. BOMGAR and the BOMGAR logo are trademarks of Bomgar Corporation; other trademarks shown are the
More informationDell Secure Mobile Access Connect Tunnel Service User Guide
Dell Secure Mobile Access 11.4 Connect Tunnel Service 2016 Dell Inc. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright. The software described in this guide is furnished
More informationQuick Start Guide for SAML SSO Access
Standalone Doc - Quick Start Guide Quick Start Guide for SAML SSO Access Cisco Unity Connection SAML SSO 2 Introduction 2 Understanding Service Provider and Identity Provider 3 Understanding SAML Protocol
More informationConfiguration Guide - Single-Sign On for OneDesk
Configuration Guide - Single-Sign On for OneDesk Introduction Single Sign On (SSO) is a user authentication process that allows a user to access different services and applications across IT systems and
More informationMcAfee Cloud Identity Manager
BoxNet Cloud Connector Guide McAfee Cloud Identity Manager version 3.1 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed,
More informationContents Introduction... 5 Configuring Single Sign-On... 7 Configuring Identity Federation Using SAML 2.0 Authentication... 29
Oracle Access Manager Configuration Guide 16 R1 March 2016 Contents Introduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 8 Installing Oracle HTTP Server...
More informationSecurity Provider Integration: SAML Single Sign-On
Security Provider Integration: SAML Single Sign-On 2003-2018 BeyondTrust, Inc. All Rights Reserved. BEYONDTRUST, its logo, and JUMP are trademarks of BeyondTrust, Inc. Other trademarks are the property
More informationQuest ChangeAuditor 5.1 FOR LDAP. User Guide
Quest ChangeAuditor FOR LDAP 5.1 User Guide Copyright Quest Software, Inc. 2010. All rights reserved. This guide contains proprietary information protected by copyright. The software described in this
More informationInstallation and Configuration Guide for Visual Voic Release 8.5
Installation and Configuration Guide for Visual Voicemail Release 8.5 Revised October 08, 2012 Americas Headquarters Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134-1706 USA http://www.cisco.com
More informationMyWorkDrive SAML v2.0 Azure AD Integration Guide
MyWorkDrive SAML v2.0 Azure AD Integration Guide Contents Introduction... 1 Configuring an Enterprise Application for SAML SSO... 1 Service Provider Configuration... 10 SP-Initiated SSO... Error! Bookmark
More informationOracle Access Manager Configuration Guide
Oracle Access Manager Configuration Guide 16 R2 September 2016 Contents Introduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 7 Installing Oracle HTTP Server...
More informationOracle Cloud. Using the Google Calendar Adapter Release 16.3 E
Oracle Cloud Using the Google Calendar Adapter Release 16.3 E68599-05 September 2016 Oracle Cloud Using the Google Calendar Adapter, Release 16.3 E68599-05 Copyright 2015, 2016, Oracle and/or its affiliates.
More informationIntegration Guide. BlackBerry Workspaces. Version 1.0
Integration Guide BlackBerry Workspaces Version 1.0 Published: 2017-12-27 SWD-20171227025930338 Contents Overview... 4 Okta... 5 Add BlackBerry Workspaces to your Okta account...5 Configure BlackBerry
More informationOctober 14, SAML 2 Quick Start Guide
October 14, 2017 Copyright 2013, 2017, Oracle and/or its affiliates. All rights reserved. This software and related documentation are provided under a license agreement containing restrictions on use and
More informationCisco Jabber for Android 10.5 Quick Start Guide
Cisco Jabber for Android 10.5 Quick Start Guide Revised: August 21, 2014, Cisco Jabber Welcome to Cisco Jabber. Use this guide to set up the app and use some key features. After setup, learn more by viewing
More informationCA SiteMinder Federation
CA SiteMinder Federation Partnership Federation Guide 12.52 This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to as the Documentation
More informationSetting Up Resources in VMware Identity Manager 3.1 (On Premises) Modified JUL 2018 VMware Identity Manager 3.1
Setting Up Resources in VMware Identity Manager 3.1 (On Premises) Modified JUL 2018 VMware Identity Manager 3.1 You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/
More informationOctober J. Polycom Cloud Services Portal
October 2018 3725-42461-001J Polycom Cloud Services Portal Copyright 2018, Polycom, Inc. All rights reserved. No part of this document may be reproduced, translated into another language or format, or
More informationCA SiteMinder. Federation Manager Guide: Legacy Federation. r12.5
CA SiteMinder Federation Manager Guide: Legacy Federation r12.5 This Documentation, which includes embedded help systems and electronically distributed materials, (hereinafter referred to as the Documentation
More informationMcAfee Cloud Identity Manager
Syncplicity Cloud Connector Guide McAfee Cloud Identity Manager version 3.1 or later COPYRIGHT Copyright 2013 McAfee, Inc. All Rights Reserved. No part of this publication may be reproduced, transmitted,
More informationOne Identity Active Roles 7.2. Azure AD and Office 365 Management Administrator Guide
One Identity Active Roles 7.2 Azure AD and Office 365 Management Administrator Copyright 2017 One Identity LLC. ALL RIGHTS RESERVED. This guide contains proprietary information protected by copyright.
More informationSonicWall Secure Mobile Access SMA 500v Virtual Appliance 8.6. Getting Started Guide
SonicWall Secure Mobile Access SMA 500v Virtual Appliance 8.6 Getting Started Guide Copyright 2017 SonicWall Inc. All rights reserved. SonicWall is a trademark or registered trademark of SonicWall Inc.
More informationSafeNet Authentication Service
SafeNet Authentication Service Integration Guide All information herein is either public information or is the property of and owned solely by Gemalto NV. and/or its subsidiaries who shall have and keep
More information