Configure RSA Cloud Authentication Service

1. Enable My Page SSO by accessing the RSA Cloud Administrator Console > Access > My Page > Single Sign-On (SSO). Ensure it is enabled and protected using two-factor authentication - Password and Access Policy.                                                                                        
2. On the Applications > Application Catalog page, search for HappyFox and click Add to add the connection.                                           
3. On the Basic Information page, enter a name for the configuration in the Name field and click Next Step.                                                 
4. On the Connection Profile page, click the IdP-initiated option.                                                                                                                    
5. Provide the Service Provider details in the following format: 
   1. ACS URL: https://<accountname>.happyfox.com/staff/saml/callback/ 
   2. Service Provider Entity ID: https://www.happyfox.com/
   3. Account name: This will be the company name or the name that is used to buy/register for the HappyFox tenant.                          
6. In the SAML Response Protection section, choose IdP signs assertion within response.
7. Download the certificate by clicking Download Certificate.                                                                                                                            
8. Click Show Advanced Configuration.
9. Under the User Identity section, configure Identifier Type and Property. For example, Identifier Type: Auto Detect and Property: Auto Detect.                                                                                                                                                               
10. Click Next Step.
11. Choose your desired Access Policy for this application and click Next Step > Save and Finish.                                                              
12. On the My Applications page, click the Edit drop-down icon and select Export Metadata to download the metadata.                          
13. Click Publish Changes. Your application is now enabled for SSO.                                                                                                               

Configure HappyFox

1. Log on to HappyFox with administrator credentials.
2. Click Apps.                                                                                                                                                                                                    
3. Click Single Sign On and select Custom SAML method.                                                                                                                        
4. Click MANAGE.                                                                                                                                                                                               
5. Under the SAML Configuration section, do the following and click Save:
   1. Choose SSO Provider – Select Custom Saml.
   2. SSO Target URL – The SingleSignOnService value that can be obtained from the metadata file downloaded from RSA.
   3. IdP Signature – Copy and paste the certificate downloaded from RSA.
   4. Enable Authenticate helpdesk agent using SAML and Authenticate end users using SAML toggle buttons.                            
6. Scroll to the top, under the Status section, and click Enable this app to enable the configuration.