Image Relay - SAML Relying Party Configuration - RSA Ready Implementation Guide
2 years ago

This article describes how to integrate RSA with Image Relay using SAML Relying Party.

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service as Relying Party to Image Relay.
Procedure
  1. Sign in to the RSA Cloud Administration Console.
  2. Navigate to the Authentication Clients menu, and from the dropdown, select Relying Parties.image.png
  3. In the Relying Party Catalog, select Add a Relying Party and click Add for Service Provider SAML.image.png
  4. On the Basic Information page, enter a name for the application in the Name field and click Next Step.image.png
  5. In the Authentication tab, select SecurID manages all authentication.
  6. Choose your desired Access Policy as required and click Next Step.
image.png
  1. Provide the Service Provider details in the following format:
    1. Assertion Consumer Service (ACS) URLhttps://<domain>.imagerelay.com/sso/consume
    2. Service Provider Entity IDhttps://<domain>.imagerelay.com/sso/metadata
image.png
Refer to the Image Relay configuration section to obtain ACS URL and Service Provider Entity ID.
  1. In the SAML Response Protection section, select IdP signs assertion within response, and download the certificate by clicking Download Certificate.image.png
  2. Under the User Identity section, select Show Advanced Configuration, then configure Identifier Type and Property as follows: 
    1. Identifier Type: Email Address
    2. Property: mail
image.png
  1. Click Save and Finish.
  2. On the My Relying Parties page, click Edit dropdown and select Metadata option to download the metadata.image.png
  3. Click Publish Changes to save your settings. After publishing, your application will be enabled for SSO.image.pngimage.png
 

Configure Image Relay

Perform these steps to configure Image Relay.
Procedure
  1. Log in to Image Relay using admin credentials.
  2. Select Account Settings from the Admin dropdown menu.image.png
  3. Click Single Sign On Settings.
image.png
  1. Provide the following details:
    1. Sign In URL (SSO): Enter the value of SingleSignOnService, which can be obtained from the metadata file downloaded from the RSA platform.
image.png
  1. Click Update Certificate and upload the certificate downloaded from RSA platform.image.png
  2. Scroll down and copy the Metadata URL and Assertion Consumer URL (Send your SAML Response Here). These URLs will be used to configure the RSA platform as the Service Provider Entity ID and ACS URL.image.png
  3. Click Save.
image.png

The configuration is complete.
Return to Image Relay - RSA Ready Implementation Guide

Related Articles

Trending Articles

Don't see what you're looking for?