Salesforce Experience Cloud - SAML Relying Party Configuration - RSA Ready Implementation Guide
a year ago

This article describes how to integrate RSA with Salesforce Experience Cloud using SAML Relying Party.

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service as Relying Party to Salesforce Experience Cloud.
Procedure

  1. Sign in to the RSA Cloud Administration Console.
  2. Navigate to the Authentication Clients menu, and from the dropdown, select Relying Parties.image.png
  3. In the Relying Party Catalog, select Add a Relying Party and click Add for Service Provider SAML.image.png
  4. On the Basic Information page, enter a name for the application in the Name field and click Next Step.image.png
  5. In the Authentication tab, select SecurID manages all authentication.
  6. Select Access Policy as required and click Next Step.
image.png
  1. To provide Service Provider details, select Enter Manually, and provide the following details:
    1. Assertion Consumer Service (ACS) URL: https://<Current My Domain URL>. To obtain current my domain url go to Company Settings > My Domain on the Salesforce Experience Cloud admin console.
    2. Service provider entity ID can be given any value provided it is the same as the Entity ID on the salesforce side of configuration.
  1. In the SAML Response Protection section, select IdP signs assertion within response if not already selected and download the certificate by clicking Download Certificate.image.png
  2. Under the User Identity section, click Connection Profile Show Advanced Configuration, and then configure Identifier Type and Property, if not already configured, as follows:
    1. Identifier Type: Auto Detect
    2. Property: Auto Detect
  1. Click Save and Finish.
  2. On the My Relying Parties page, click Edit dropdown and select Metadata option to download the metadata.image.png
  3. Use this metadata file to configure Salesforce, and then update the RSA configuration by downloading the latest metadata from Salesforce. (Edit the connector created on RSA and import the latest metadata from Salesforce in the Connection Profile tab.)
  4. Click Publish Changes to save your settings. After publishing, your application will be enabled for SSO.image.pngimage.png

 

Configure Salesforce Experience Cloud

Perform these steps to configure Salesforce Experience Cloud.

Procedure

  1. Log in to Salesforce Experience Cloud admin console: https://login.Salesforce Experience Cloud.com 
  2. In the Salesforce Experience Cloud console, click the gear icon and select Setup.
    image.png
  3. In the left pane, under the Identity section, search for and select Single Sign-On Settings.image.png
  4. Click Edit and select the SAML Enabled checkbox under Federated Single Sign-On Using SAML if it is not already selected, then click Save.image.png
  5. Select New from Metadata File.
image.png
  1. Choose the metadata file downloaded from RSA Platform and click Create.
    image.png
  2. Upload the downloaded IdP certificate in the Identity Provider Certificate section by clicking Choose File, then click Save. Ensure that the Entity ID is the same as what is configured as the Service Provider Entity ID on RSA.image.png
  3. Click Download Metadata if you want to import the salesforce metadata to RSA.
image.png
  1. Navigate to My Domain under Company Settings. Click Edit under Authentication Configuration, check the checkbox next to your configuration name, and click Save.
image.png


The configuration is complete.
Return to Salesforce Experience Cloud - RSA Ready Implementation Guide

 

Related Articles

Trending Articles

Don't see what you're looking for?