Humanity - SAML Relying Party Configuration - SecurID Access Implementation Guide
2 years ago
Originally Published: 2021-08-26

Humanity - SAML Relying Party Configuration - SecurID Access Implementation Guide

This section describes how to integrate SecurID Access with Humanity using Relying Party. Relying party uses SAML 2.0 to integrate SecurID Access as a SAML Identity Provider (IdP) to Humanity SAML Service Provider (SP).

Architecture Diagram

Admin_Dharani_1-1629995073332.png

 

Configure SecurID Access Cloud Authentication Service

Perform these steps to configure SecurID Access Cloud Authentication Service as a relying party SAML IdP to Humanity .

Procedure

  1. Sign into the Cloud Administration Console and browse to Authentication Clients > Relying Parties and click Add a Relying Party.

    Admin_Dharani_2-1629995253905.png

     

    Admin_Dharani_3-1629995287962.png

     

  2. On Basic Information page enter a Name for the application, ie. Humanity Then click on Next Step.

  3. On Authentication page

    1. select the RSA SecurID Access manages all authentication

    2. Select the desired Primary Authentication Method from the dropdown list.

    3. Select the desired policy from the Access Policy for Additional Authentication.

    4. Click Next Step

      Admin_Dharani_4-1629995334220.png

       

  4. On Connection Profile page

    1. Enter the Assertion Consumer Service (ACS) Enter the value from the Humanity configuration below for ACS URL For example: https://testenv.humanity.com/includes/saml/consume.php.

    2. Enter the Service Provider Entity ID base on the domain of your Humanity instance set the value base on https://<DOMAIN>.humanity.com/app/ elow for Entity Id. For example: https://testenv.humanity.com/app/.

    3. Open Advanced Configuration section.

    4. Note the Entity ID for the Identity Provider. This will be needed for the Humanity configuration below.

    5. Click on Save and Finish

      Admin_Dharani_5-1629995371673.png

       

  5. Browse to Authentication Clients > Relying Parties

  6. Scroll down to the your newly created Relying party and click down error next to Edit and choose View or Download IdP MetatData and download the Metadata File.

    Admin_Dharani_6-1629995401246.png

     

  7. Click on Publish Changes. Your application is now enabled for SSO. If you make any additional changes to the application configuration you will need to republish.

    Admin_Dharani_7-1629995424274.png

     

Configure Humanity

Perform these steps to integrate Humanity with SecurID Access as a Relying Party SAML SP.

Procedure

  1. Sign into Humanity and browse to Settings > IntegrationSSO.

  2. Select SAML Enabled checkbox.

  3. Select Allow Password Login checkbox.

  4. Note the Access Consumer Servcice (ACS) URL this is used above in the RSA Cloud Authenitcation Service (CAS) configuration above.

  5. Go to the Identity Provider Settings Section

  6. For the SAML Issuer URL enter the Identity Provider URL from the SecurID Access configuration above. For example, https://portal.sso.per.rsa.net/IdPServlet?idp_id=1cnfrt3e9zckw.

  7. For the X.509 Certificate use the contents of the metadata XML file downloaded above and copy the X.509 certification information between the tags <ds:X509Certificate></ds:X509Certificate> and paste it in the IDP Certificate field.

  8. Select Save Settings.

Configuration is complete.

See main page for more certification information.

Related Articles

Trending Articles

Don't see what you're looking for?