IBM Security Verify - SAML Relying Party Configuration - RSA Ready Implementation Guide
2 years ago
This article describes how to integrate RSA with IBM Security Verify using SAML Relying Party.

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service as Relying Party to IBM Security Verify.
Procedure
  1. Sign in to the RSA Cloud Administration Console.
  2. Navigate to the Authentication Clients menu, and from the dropdown, select Relying Parties.image.png
  3. In the Relying Party Catalog, select Add a Relying Party and click Add for Service Provider SAML.image.png
  4. On the Basic Information page, enter a name for the application in the Name field and click Next Step.image.png
  5. In the Authentication tab, select SecurID manages all authentication.
  6. Select the Primary Authentication Method and Access Policy for Additional Authentication as required and click Next Step.image.png
  7. To provide Service Provider details, select Import Metadata, then click Choose File. Select the file downloaded from the Service Provider.image.png
  8. Assertion Consumer Service (ACS) URL and Service Provider Entity ID Values will be auto filled.image.png
  9. In the SAML Response Protection section, select IdP signs entire SAML response, and download the certificate by clicking Download Certificate.image.png
  10. Under the User Identity section, select Show Advanced Configuration, then configure Identifier Type and Property as follows: 
    1. Identifier Type: Auto Detect 
    2. Property: Auto Detect
image.png
  1. Click Save and Finish.
  2. On the My Relying parties page, click the Edit dropdown and select Metadata to download the metadata.image.png
  3. Click Publish Changes to save your settings. After publishing, your application will be enabled for SSO.image.pngimage.png

Configure IBM Security Verify

Perform these steps to configure IBM Security Verify.
Procedure
  1. Log in to IBM Security Verify with admin credentials.
  2. Click the Authentication dropdown and select Identity Providers.image.png
  3. Click Add identity provider.image.png
  4. Select SAML Enterprise and click Next.image.png
  5. Provide the following details and click Next.
    1. Name – Name of the Identity Provider.
    2. Realm – Provide a unique realm name.
  6. Check the Enabled checkbox to enable your provider as a sign in option.
image.png
  1. Click Download metadata, then click Next.image.png
  2. On From identifier provider, do the following and click Next:
    1. Select the Identity provider button.
    2. Identity provider metadata - Upload the metadata file downloaded from the RSA platform.
image.png
  1. Click Next on the following tab.
  2. On Just-in-time provisioning and identity linking, do the following and click Next:
    1. Check the Just-in-time provisioning checkbox.
    2. Select the Unique user identifier as email.
    3. Select the Transformation as Lowercase.
image.png
  1. Click Next on the two tabs, then click Done.image.png
The configuration is complete.
Return to IBM Security Verify - RSA Ready Implementation Guide

Related Articles

Trending Articles

Don't see what you're looking for?