Differences to be aware of when configuring RSA SecurID Access Cloud IdP vs IDR IdP
Originally Published: 2018-11-07
Article Number
Applies To
Issue
- Configure the IDR IdP as described in Add a SAML Application.
- Configure the Cloud IdP as described in Add a Relying Party.
Resolution
| Cloud IdP | IDR IdP |
|---|---|
| Creates its own signing certificate | Admin generates and uploads signing certificate |
| Assertion signatures use the SHA-256 hashing algorithm | Assertion signatures use the SHA-1 hashing algorithm by default. Other algorithms including SHA-256 can be configured. |
| Assertion signing is performed on the“Assertion within response” | Assertion signing defaults to “Entire SAML response” but can be configured to be “Assertion within response” |
| The User Identity NameID type is auto-detected | You must specify the User Identity NameID type |
| Extended Attributes are automatically hunted for in all Identity Sources by default | Extended Attributes must be configured with the specific Identity Source where they can be found |
| IdP URL is found only in the IdP metadata file | IdP URL is auto populated in the configuration page |
| 3rd party Service Provider must support SP-initiated SAML | Supports IdP-initiated or SP-initiated SAML |
| Identity Source User Attributes page must have "Synchronize the selected policy attributes with the Cloud Authentication Service" checked. | This checkbox is not applicable |
Notes
The cloud IdP provides primary and/or additional multi-factor authentication for SaaS applications but does not provide single sign-on.
Related Articles
Quick Setup Guide - Configure IdP-Initiated SAML for Third-Party Application Number of Views What is the difference between RSA ACE/Agent 5.x for UNIX and a Communications Server? Number of Views Events and incidents mark as deleted automatically Number of Views RSA Identity Governance and Lifecycle error "Signature on SAML authn failed to verify" when processing SAML assertion from… Number of Views RSA Authentication Manager 8.5 RADIUS Reference Guide Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
