cryptlex - SAML Relying Party Configuration - SecurID Access Implementation Guide
2 years ago
Originally Published: 2021-08-19

cryptlex - SAML Relying Party Configuration - RSA Ready SecurID Access Implementation Guide

This section describes how to integrate RSA SecurID Access with cryptlex using Relying Party. Relying party uses SAML 2.0 to integrate RSA SecurID Access as a SAML Identity Provider (IdP) to cryptlex SAML Service Provider (SP).

Architecture Diagram

Admin_Dharani_0-1629389620121.png

 

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service as a relying party SAML IdP to cryptlex .

Procedure

    1. Sign into the RSA Cloud Administration Console and browse to Authentication Clients > Relying Parties and click Add a Relying Party.

Admin_Dharani_1-1629389644852.png

 

Admin_Dharani_2-1629389709453.png

 

    1. On Basic Information page enter a Name for the application, ie. cryptlex Then click on Next Step.

    2. On Authentication page

        1. select the RSA SecurID Access manages all authentication

        2. Select the desired Primary Authentication Method from the dropdown list.

        3. Select the desired policy from the Access Policy for Additional Authentication.

        4. Click Next Step

      Admin_Dharani_3-1629389752735.png

       

    3. On Connection Profile page

        1. Enter the Assertion Consumer Service (ACS) From the cryptlex configuration below for SAML ACS Endpoint URL For example: https://api.cryptlex.com/v3/accounts/login/saml/rsa/acs.

        2. Enter the Service Provider Entity ID From the cryptlex configuration below for Relay State/Return URL. For example: https://rsa.cryptlex.app.

        3. Open Advanced Configuration section.

        4. Add Attribute Name = EmailAddress and Property = mail
        5. Add Attribute Name = FirstName and Property = givenName
        6. Add Attribute Name = LastName and Property = distinguishedName
        7. Note above Property values may vary based on configuration.

        8. Click on Save and Finish

      Admin_Dharani_4-1629389783178.png

       

    4. Browse to Authentication Clients > Relying Parties

    5. Scroll down to the your newly created Relying party and click down error next to Edit and choose View or Download IdP MetatData and download the Metadata File. Cryptlex requires the url of the metadata file, so host the downloaded metadata file or mail the Idp metadata to support, they’ll host the file and send the URL.

Admin_Dharani_5-1629389825672.png

 

  1. Click on Publish Changes. Your application is now enabled for SSO. If you make any additional changes to the application configuration you will need to republish.

    Admin_Dharani_6-1629389844999.png

     

 

Configure cryptlex

Perform these steps to integrate cryptlex with RSA SecurID Access as a Relying Party SAML SP.

Procedure

  1. Sign into cryptlex and browse to Settings > Security.

  2. Scroll to SAML SSO and enable SAML SSO.

  3. Note the Relay State/Return URL and SAML ACS Endpoint URL these are used above in the RSA Cloud Authenitcation Service (CAS) configuration above.

  4. For the SAML IdP Metadata URL enter the URL to access the exported IdP metadata above. For example, if hosted by cryptlex, https://dl.cryptlex.com/dowloads/rsaReady/idpMetatadata_rp_rsa.

  5. Save changes.

Configuration is complete.

See main page for more certification information.

Related Articles

Trending Articles

Don't see what you're looking for?