Online Help

SafeNet Trusted Access for Deputy

Overview

SafeNet Trusted Access (STA) allows you to configure the Deputy application using the Security Assertion Markup Language (SAML) protocol.

The STA and Deputy integration is aimed to protect the Deputy end users' access.

The IdP-initiated SSO use case can be configured for Deputy.

Configuring SafeNet Trusted Access for Deputy is a three-step process:

1.Deputy setup

2.SafeNet Trusted Access setup

3.Verify Authentication

NOTE   This application integration online help was produced based on a review of publicly available documentation and was not tested by Thales. Support for the application integration is provided on a best-effort basis.

Deputy Setup

As pre-requisites:

Extract the ISSUER/ENTITY ID and SINGLESIGNONSERVICE fields' values from the STA console.

You can copy the field values by clicking the Copy to Clipboard icon available next to the respective fields.

Download the Identity Provider signing certificate from the SafeNet Trusted Access console by clicking the Download X.509 certificate button.

As you configure STA in Deputy, you will need the certificate and the other information provided on the STA console, specifically the ISSUER/ENTITY ID and the SINGLE SIGN ON SERVICE URL.

Perform the appropriate steps to configure SafeNet Trusted Access as your Identity Provider in Deputy.

Click here to refer to the Deputy documentation.

SafeNet Trusted Access Setup

After configuring SafeNet Trusted Access in the Deputy application, the next step is to activate the Deputy application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the Deputy application that you added previously is currently in inactive state by default. To configure and activate the application, click on the Deputy application and proceed to the next step.

2.Under Account Details, enter the field values.

NOTE   Contact the Deputy support team for the field values.

For more information on configuring the SAML service provider, refer to the Configure the SAML service provider section of the STA online documentation.

NOTE   Under Return Attributes, add return attribute(s) as required by the Deputy application.

3.Under Advanced Settings, perform the following steps:

a.In the IDP INITIATED SSO RELAY STATE field, enter the relay state value if your application requires a unique relay state.

b.In the LOGOUT CHANNEL field, select an option that is compatible with your application.

For rest of the fields, modify the default values as per your preferred configuration.

4.Click Save Configuration to save the details and activate the Deputy application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the Deputy URL, enter your email address, and click Sign In. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the Deputy application after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the Deputy icon, you should be redirected to the Deputy application after authentication.

 

© 2021 SafeNet Trusted Access. Various trademarks are held by their respective owners.