Online Help

SafeNet Trusted Access for Pulse Connect Secure

Overview

Configuring SafeNet Trusted Access for Pulse Connect Secure is a three-step process:

1.Pulse Connect Secure setup

2.SafeNet Trusted Access setup

3.Verify authentication

Pulse Connect Secure Setup

As a prerequisite, download the Identity Provider signing certificate from the SafeNet Trusted Access console by clicking the Download X.509 Certificate button. You will need this certificate in one of the steps below.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in Pulse Connect Secure:

1.Create the Pulse Connect Secure entity ID

2.Create a SAML Identity Provider

3.Set the user authentication realm

Create the Pulse Connect Secure Entity ID

Perform the following steps to create the Pulse Connect Secure Entity ID:

1. Log in to the Pulse Connect Secure administrator account using the http://<IP Address or FQDN of Pulse connect secure>/admin URL.

2.On the administrator console, click System > Configuration > SAML.

3.In the Configuration window, click Settings.

4.In the Settings window, perform the following steps:

a.Under Metadata Server Configuration, in the Host FQDN for SAML field, enter a host name.

b.Click Save Changes.

c.Click Update Entity Ids.

5.In the Confirm Update Entity Ids window, click Update Entity Ids to update the metadata.

Create a SAML Identity Provider

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in Pulse Connect Secure:

1.On the administrator console, click Authentication > Auth Servers.

2.In the Authentication Servers window, under the New field, select SAML Server and click New Server.

3.In the New SAML Server window, on the Settings tab, perform the following steps:

a.In the Server Name field, enter a server name.

b.Under Settings, complete the following fields:

Parameter Value
Configuration mode Select the Manual option.
Identity Provider Entity Id Enter the Issuer/Entity ID, provided on the SafeNet Trusted Access console. You can copy this URL by clicking the Copy to Clipboard icon , available next to the Issuer/Entity ID field.
Identity Provider Single Sign On Service URL Enter the SingleSignOnService URL, provided on the SafeNet Trusted Access Console. You can copy this URL by clicking the Copy to Clipboard icon , available next to the SingleSignOnService field.


c.Under SSO Method in the Upload Certificate field, click Browse, and upload the Identity Provider signing certificate you downloaded earlier from the SafeNet Trusted Access console.

d.Under Service Provider Metadata Settings, in the Metadata Validity field, enter the number of days up to which the metadata is valid.

e.Click Save Changes.

f.Under Service Provider Metadata Settings, click Download Metadata to download the Pulse Connect Secure metadata.

Set the User Authentication Realm

Perform the following steps to set the user authentication realm:

1.On the administrator console, click Users > User Realms.

2.In the User Authentication Realms window, from the Authentication Realm column, select the authentication realm (for example, Users).

3.On the General tab, under Servers, in the Authentication field, select the authentication server created earlier in step 3(a).

4.Click Save Changes.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in Pulse Connect Secure, the second step is to activate the Pulse Connect Secure application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the Pulse Connect Secure application you added previously is currently in inactive state by default. To configure and activate this application, click the application (for example, Pulse Connect Secure) and proceed to the next step.

2.Under STA Setup, click the Upload Metadata button.

3.In the Metadata upload window, click Browse to search and select the Pulse Connect Secure metadata that you saved in step 3(f) of Pulse Connect Secure Setup.

Under Account Details, service provider metadata information is displayed.

4.Under User Portal Settings, in the SERVICE LOGIN URL field, enter the application login URL (for example, https://junos.test.com).

5.Click Save Configuration to save the details and activate the Pulse Connect Secure application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the Pulse Connect Secure URL https://<IP address or FQDN of the Pulse Connect Secure>. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the Pulse Connect Secure user portal after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the Pulse Connect Secure application icon, you should be redirected to the Pulse Connect Secure user portal after authentication.

 

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.