Mulesoft Anypoint Platform - SAML My Page SSO Configuration - RSA Ready Implementation Guide
2 years ago
This article describes how to integrate Mulesoft Anypoint Platform with RSA Cloud Authentication Service using My Page SSO.

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service using My Page SSO.
Procedure
  1. Enable My Page SSO by accessing the RSA Cloud Admin Console > Access > My Page > Single Sign-On (SSO). Ensure it is enabled and protected using two-factor authentication - Password and Access Policy.image.png
  1. On the Applications > Application Catalog page, click on Create From Template.image.png
  2. On the Choose Connector Template page, click Select for SAML Direct.image.png
  3. On the Basic Information page, enter a name for the configuration in the Name field and click Next Step.image.png
  4. In the Connection Profile section, click the IdP-initiated option.image.png
  5. To provide Service Provider details, select Import Metadata and click the Choose File button. Then, select the file downloaded from the Service Provider. 
image.png 
See the Notes section for instructions on how to obtain the Metadata
  1. Assertion Consumer Service (ACS) URL and Service Provider Entity ID values will be auto filled.image.png
  2. In the SAML Response Protection section, select IdP signs entire SAML response, and download the certificate by clicking Download Certificate.image.png
  3. Under the User Identity section, select Show Advanced Configuration, then configure Identifier Type and Property as follows:
    1. Identifier Type: unspecified
    2. Property: mail
image.png
  1. Under Statement Attributes add the following attributes.
    1. Attribute Name: email
    2. Attribute Source: Identity Source
    3. Property: mail
image.png
  1. Click Next Step.
  2. Choose your desired Access Policy for this application and click Next Step > Save and Finish.image.png
  3. On the My Applications page, click the Edit dropdown and select Export Metadata to download the metadata.image.png
  4. Click Publish Changes to save your settings. After publishing, your application will be enabled for SSO.image.pngimage.png

Notes

To obtain Anypoint Platform metadata do the following:
  1. Click the SAML configuration that was configured in Mulesoft Anypoint platform.image.png
Note: The metadata link will only be generated after configuring SAML in Anypoint Platform.
  1. Under Configuration tab, click on Anypoint service provider metadata link to download the metadata file.image.png
  2. While importing Mulesoft Anypoint Platform metadata into the RSA platform, the Encrypt Assertion checkbox will be auto populated. Untick the checkbox.image.png

Configure Mulesoft Anypoint Platform

Perform these steps to configure Mulesoft Anypoint Platform.
Procedure
  1. Log in to MuleSoft Anypoint Platform with admin credentials.
  2. Click on Access Management.image.png
  3. Select Identity Providers, click the Add Identity Provider dropdown, and select SAML 2.0.image.png
  4. Provide the following details:
    1. Import IdP Metadata: Upload the metadata file downloaded from the RSA platform.
    2. Name: Provide a unique name.
image.png
  1. Provide the Audience value and click Save Changes.
    1. Audience - <organization domain>.anypoint.mulesoft.com.image.png
See Notes section on how to obtain the organization domain.

Notes

To obtain the organization domain do the following:
  1. Click on your profile icon at the top right corner and select Profile.image.png
  2. Under the Settings section, you can find the organization domain.image.png
The configuration is complete.
Return to Mulesoft Anypoint Platform - RSA Ready Implementation Guide

Related Articles

Trending Articles

Don't see what you're looking for?