Cloudflare - SAML My Page SSO Configuration - RSA Ready Implementation Guide
2 years ago
This article describes how to integrate Cloudflare with RSA Cloud Authentication Service using My Page SSO.

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service using My Page SSO.
Procedure
  1. Sign in to the RSA Cloud Administration Console with administrator credentials.
  2. Enable SSO on the My Page portal by accessing the RSA Cloud Administration Console > Access My Page > Single Sign-On (SSO). Ensure it is enabled and protected by two-factor authentication using a Password and Access Policy.image.png
  3. On the Applications > Application Catalog page, click on Create From Template.image.png
  4. On the Choose Connector Template page, click Select for SAML Direct.image.png
  5. On the Basic Information page, enter a name for the configuration in the Name field and click Next Step.image.png
  6. In the Connection Profile section, select SP-initiated option.
image.png
  1. Provide the connection URL: https://<your-team-domain-name>
Note: You can find your team domain name in Zero Trust under Settings > Custom Pages (of Cloudflare).
  1. Provide the Service Provider details in the following format:
    1. Assertion Consumer Service (ACS) URL: https://<Domain-name>/cdn-cgi/access/callback.
    2. Service Provider Entity ID: This is the same as the ACS URL.
Note: The domain name can be extracted from your team domain name, which typically looks like <domain-name>.cloudflareaccess.com.
  1. In the SAML Response Protection section, select IdP signs entire SAML response.
  2. Under the User Identity section, select Show Connection Profile Advanced Configuration, then configure Identifier Type and Property as follows: 
    1. Identifier Type: Auto Detect 
    2. Property: Auto Detect
image.png
  1. Click Next Step.
  2. Choose your desired Access Policy for this application and click Next Step > Save and Finish.
  3. On the My Applications page, click the Edit dropdown for Cloudfalre SAML and select Export Metadata to download the metadata.image.png
  4. Click Publish Changes to save your settings. After publishing, your application will be enabled for SSO.image.pngimage.png
 

Configure Cloudflare

Perform these steps to configure Cloudflare.

Procedure
  1. Open the Cloudflare dashboard and on the left panel, select Zero Trust.
image.png
  1. In Zero Trust section. go to Settings > Authentication > Login methods.
  2. Select Add new and choose SAML.
  3. Choose a descriptive name.
  4. Upload the metadata file downloaded from RSA. The Single sign-on URL, IDP Entity ID, Signing Certificate, and Email attribute name will be auto-filled.
  5. Select Save.
  6. Select Test. This should be successful.

The configuration is complete.
Return to Cloudflare - RSA Ready Implementation Guide
 

Related Articles

Trending Articles

Don't see what you're looking for?