This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Integrations

SSO Agent - SAML Configuration - Teem RSA Ready SecurID Access Implementation Guide

This section contains instructions on how to integrate RSA SecurID Access with Teem Teem using a SAML SSO Agent.

Architecture Diagram

arch-diag-sso-saml_624x403.png

RSA Cloud Authentication Service

Follow the steps in this section to configure RSA Cloud Authentication Service as an SSO Agent SAML IdP to Teem.

Procedure

1. Logon to the RSA Cloud Administration Console and browse to Applications > Application Catalog, search for Teem and click +Add to add the connector.

IDR-1.png

2. Enter a name for the application in the Name field on the Basic Information page and click the Next Step button.

3. Navigate to Initiate SAML Workflow section.

a. In the Connection URL field, enter Uuid string from the Teem SAML app page.

b. Choose IDP-initiated.

Note: The following IDP-initiated configuration works for SP-initiated Teem connections as well.

IDR-3.png

4. Scroll down to SAML Identity Provider (Issuer) section.

IDR-4.png

a. Take note of the Identity Provider URL.

b. Take note of the Issuer Entity ID.

b. Select Choose File and upload the private key.

c. Select Choose File to import the public signing certificate.

5. Scroll down to the Service Provider section.

IDR-5.png

6. Verify the Assertion Consumer Service (ACS) URL.

7. Verify the Audience (Service Provider Entity ID).

8. Scroll down to the User Identity section. Verify the settings are correct for your environment. In this example the NameID is set to format Email Address with the value of mail.

IDR-8.png

9. Click Show Advanced Configuration.

10. Under Attribute Extension enter the following attributes:

urn:oid:0.9.2342.19200300.100.1.1 set to property mail

urn:oid:0.9.2342.19200300.100.1.3 set to property mail

urn:oid:2.5.4.4 set to property last name, sn

urn:oid:2.5.4.42 set to property first name, givenName

IDR-10.png

11. Click Next Step.

12. On the User Access page, select Allow All Authenticated Users user policy from the available options.

IDR-12.png

13. Click Next Step.

14. On the Portal Display page, select Display in Portal.

15. Click Save and Finish.

16. Click Publish Changes. Your application is now enabled for SSO.

IDR-16.png

 

Teem

Follow the steps in this section to configure Teem as an SSO Agent SAML SP to RSA Cloud Authentication Service.

Procedure

1. Login into the Teem administration console. https://app.teem.com.

2. Create your Teem SSO sub-domain. Navigate to Manage > Teen Account >Company Details.

3. Scroll down to Teem SSO Sub-Domain and enter a custom subdomain.

SP-3.png

4. Navigate to Manage > Apps & Integrations > 3rd Party Apps.

5. Scroll down to User Management. Click ACTIVATE for the SAML app.

SP-5.png

6. The configuration page will open.

7. Enter the name for your SAML Provider.

8. Enter the Issuer Entity ID in the Entity Id.

9. Enter the Identity Provider URL in the Signin Url field.

10. Paste the public certificate in the x509 field. Do not include the ---BEGIN and ---END CERTIFICATE markers.

11. Select Allow Just-In-Time provisioning.

SP-11_624x381.png

12. Click Save.

13. Copy the Uuid string from the Details window. Paste the Uuid into the RSA Connection URL field.

 

Configuration is complete.

Return to the main page for more certification related information.

 
Labels (1)
Labels:
0 Likes
Was this article helpful? Yes No
No ratings
Version history
Last update:
‎2019-01-22 10:40 AM
Updated by:
Beginner
Contributors

Related Content

Article Dashboard
© 2023 RSA Security LLC or its affiliates. All rights reserved.