Fortanix Data Security Manager - SAML Relying Party Configuration - RSA Ready SecurID Access Implementation Guide
2 years ago
Originally Published: 2022-01-27

This section describes how to integrate RSA SecurID Access with Fortanix Data Security Manager using Relying Party. Relying party uses SAML 2.0 to integrate RSA SecurID Access as a SAML Identity Provider (IdP) to Fortanix Data Security Manager SAML Service Provider (SP).

Architecture Diagram

jaink9_0-1643323914574.png

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service as a relying party SAML IdP to Fortanix Data Security Manager .

Procedure

1. Sign into the RSA Cloud Administration Console and browse to Authentication Clients > Relying Parties and click Add a Relying Party.

jaink9_1-1643323949090.png

2. From the Relying Party Catalog, select the +Add button for Service Provider SAML.

jaink9_2-1643323975234.png

3. In the Basic Information section, enter a name and click Next Step.

jaink9_3-1643324015163.png

4. In the Authentication section, do the following:

a. Under Authentication Details, select RSA SecurID Access manages all authentication.

b. Select appropriate primary and additional authentication methods.

c. Click Next Step.

jaink9_4-1643324042565.png

5.On the next page, under Service Provider Metadata enter the following values:

jaink9_5-1643324078960.png

a. Assertion Consumer Service (ACS) URL Enter the url: https://sdkms.fortanix.com/saml.

b. Service Provider Entity ID - Enter the url: https://sdkms.fortanix.com/saml/metadata.xml.

6. Select Default Service Provider Entity ID in Audience for SAML Response section

jaink9_6-1643324145901.png

7. In the Message Protection section, under SAML Response Protection, select IdP signs entire SAML response:

jaink9_7-1643324173020.png

8. Click Show Advanced Configuration.

jaink9_8-1643324244414.png

9. Under User Identity section, select the following:

a. Identifier Type: Select Auto Detect.

b. Property: Select Auto Detect.

jaink9_9-1643324284864.png

10. Click Save and Finish.

11. Click the Publish Changes button in the top left corner of the page, and wait for the operation to complete.

jaink9_10-1643324317752.png

12. On the My Relying Parties page, do the following:

a. Select Metadata from the Edit drop-down list to view and download an XML file containing your RSA SecurID Access IdP’s metadata.

b. Click Download Metadata File in the View or Download Identity Provider Metadata page to download the file. A file named IdpMetadata.xml should be downloaded.

jaink9_11-1643324356707.png

 

Configure Fortanix Data Security Manager

Perform these steps to integrate Fortanix Data Security Manager with RSA SecurID Access as a Relying Party SAML SP.

Procedure

1. Log in to your Fortanix DSM portal.

2. From the left panel click Settings > AUTHENTICATION > SINGLE SIGN-ON.

jaink9_0-1643324466465.png

3. Add the SAML integration, and upload the SAML file downloaded from Step 12 of Configure RSA Cloud Authentication Service.

jaink9_1-1643324499539.png

4.Enter your custom SSO Title and Logo URL.

jaink9_2-1643324524748.png

5. Click ADD INTEGRATION.

6. Once your have added the configuration successfully, you will be able to see your configuration:

jaink9_3-1643324547249.png

 

Configuration is complete.

For additional integrations, see "Configuration Summary" section.

Related Articles

Trending Articles

Don't see what you're looking for?