Configure RSA Cloud Authentication Service

1. Sign in to RSA Cloud Administration Console. 
2. Click Authentication Clients > Relying Parties.                                                                                                                                                
3. On the Relying Party Catalog page, click Add a Relying Party and click Add for Service Provider SAML.                                               
4. On the Basic Information page, enter the name for the application in the Name field and click Next Step.                                                  
5. On the Authentication page, choose SecurID manages all authentication.
6. Select a Primary Authentication Method and Access Policy as required and click Next Step.                                                                 
7. Scroll down to the Service Provider section and enter the following details:
   1. ACS URL: https://gw.app.printercloud10.com/sidpelab/authn/idp/AccountID/saml2/acs
   2. Service Provider Entity ID: This can be obtained from Printer Logic Security -https://gw.app.printercloud10.com/sidpelab/authn/idp/AccountID/saml2/metadata. Refer to the service provider information in step 5 of the Configure Printer Logic Security section.                                                                                                                              
8. In the SAML Response Protection section, choose IdP signs assertion within response.
9. Download the certificate by clicking Download Certificate.                                                                                                                          
10. Click Show Advanced Configuration.
11. Under the User Identity section, configure Identifier Type and Property. For example, Identifier Type: Email Address and Property: mail.
12. Obtain the Entity ID value from the Printer Logic Security configuration section.
13. Click Save and Finish.
14. On the My Relying Parties page, click the Edit drop-down icon and select the Metadata option to download the metadata.
15. Click Publish Changes. Your application is now enabled for SSO.                                                                                                                 

Configure Printer Logic Security

1. Log on to Printer Logic Security with administrator credentials.
2. On the home page, click Tools > General > Settings.                                                                                                                                     
3. Under Identity Provider Settings, select IDP and click Add to configure the IDP.                                                                  
4. Provide the following IDP settings.
   1. IdP Template: Select Custom.
   2. Authentication Protocol: Choose SAML2.
   3. Provisioning: Select the JIT checkbox.
   4. SSO URL: The Identity Provider URL that is obtained from step 12 of the Configure RSA Cloud Authentication Service section.
   5. Certificate: Import the certificate downloaded from IDP.
   6. Issuer URL: Provide the Issuer URL obtained from the Identity Provider URL field (step 12 of the Configure RSA Cloud Authentication Service section).
   7. Under Admin Group Name, select the Enable for End User Login and Enable for Admin Login checkboxes. Admin login is optional to ensure the admin is not locked out if the configuration is incorrect.                                                                            
5. The Service Provider Information will be auto populated, which are used for RSA configuration.
6. Click Apply.                                                                                                                        
7. Click Save.                                                                                                                                                              
8. On the home page, click Settings and click Configure under SSO.