DocuSign - SAML My Page SSO Configuration - RSA Ready Implementation Guide
2 years ago
Originally Published: 2023-09-07

This article describes how to integrate DocuSign with RSA Cloud Authentication Service using My Page SSO.
  

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service using My Page SSO.
Procedure

  1. Enable My Page SSO by accessing the RSA Cloud Administration Console > Access > My Page > Single Sign-On (SSO). Ensure it is enabled and protected using two-factor authentication - Password and Access Policy.                                                                                        image.png
  2. On the Applications > Application Catalog page, search for DocuSign and click Add to add the connection.                                     image.png
  3. On the Basic Information page, enter a name for the configuration in the Name field and click Next Step.                                             image.png
  4. On the Connection Profile page, click the IdP-initiated option.                                                                                                                    image.png
  5. Provide the Service Provider details in the following format: 
    1. ACS URL:  https://account-d.docusign.com/organizations/<OrgID>/saml2/login/sp/ <IdP_ID>
    2. Service Provider Entity ID: https://account-d.docusign.com/organizations/ <OrgID> /saml2
      Refer to the Configure DocuSign section to obtain the ACS URL and Entity ID.                                                                         image.png
  6. In the SAML Response Protection section, choose IdP signs assertion within response.
  7. Download the certificate by clicking Download Certificate.                                                                                                                      image.png
  8. Click Show Advanced Configuration.
  9. Under the User Identity section, configure Identifier Type and Property. For example, Identifier TypeAuto Detect and PropertyAuto Detect.                                                                                                                                                          image.png
  10. Under the Statement Attributes section, add the attributes as shown in the following figure.                                                          image.png
  11. Click Next Step.
  12. Choose your desired Access Policy for this application and click Next Step > Save and Finish.                                                               image.png
  13. On the My Applications page, click the Edit drop-down icon and select Export Metadata to download the metadata.                     image.png
  14. Click Publish Changes. Your application is now enabled for SSO.                                                                                                       image.png  image.png
    

Configure DocuSign

Perform these steps to configure DocuSign.
Procedure
  1. Log on to DocuSign as an administrator.
  2. Under ACCESS MANAGEMENT, choose Domains.                                                                                                                                      image.png
  3. Click Add Domain.                                                                                                                                                                              image.png
  4. Enter the Domain Name and click Claim.                                                                                                                                           image.png
  5. To verify your domain, update your DNS entry with the method shown in the Verify Domain section: TXT record.                              image.png 
  6. After the Domain is verified, the status appears as Active.                                                                                                                     image.png
  7.  In the left pane, select ACCESS MANAGEMENT > Identity Providers and then click Add Identity Provider.                                 image.png        image.png    
  8. Provide Custom Name (your Identity Provider name) then click Next.                                                                                                     image.png      
  9. Configure the Identity Provider settings with the URLs obtained from RSA Cloud Administration Service.
    1. Identity Provider Issuer: The EntityID value that can be obtained from the metadata file downloaded from RSA.
    2. Identity Provider URL: The SingleSignOnService value that can be obtained from the metadata file downloaded from RSA.
    3. Choose the POST option under Send AuthN request by.
    4. Click Add Identity Provider.                                                                                                                                                            image.png    image.png
  10. In the Identity Providers section, click Add Certificate in the ACTIONS drop-down list.                                                                        image.png
  11. Navigate to the Certificates session and click Add Certificate.
  12. Upload the certificate downloaded from RSA and click Save.    image.png       image.png
  13. Navigate to the Configuration section and copy ACS URL and Entity ID. These values will be used to configure RSA.
    1. Service Provider Assertion Consumer Service URL: ACS URL 
    2. Service Provider Issuer URL: Entity ID                                                                                                                                           image.png
The configuration is complete.
Return to DocuSign - RSA Ready Implementation Guide.                                       

Related Articles

Trending Articles

Don't see what you're looking for?