Online Help

SafeNet Trusted Access for TalentLMS

Overview

Configuring SafeNet Trusted Access for TalentLMS is a three-step process:

1.TalentLMS setup

2.SafeNet Trusted Access setup

3.Verify authentication

TalentLMS Setup

As a prerequisite, obtain the certificate fingerprint from the Identity Provider certificate. To obtain the certificate fingerprint, download the Identity Provider certificate from the SafeNet Trusted Access console by clicking the Download X.509 certificate button and perform the following steps:

1.Convert the default format of the Identity Provider certificate to the .cer format.

2.Open the certificate.

3.On the Details tab, the certificate fingerprint is displayed as the Value of the Thumbprint field. Click the Thumbprint field and copy the certificate fingerprint.

You will need this certificate fingerprint in one of the steps below.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in TalentLMS:

1.Open the TalentLMS login URL, https://app.talentlms.com/login and perform the required steps to log in to your TalentLMS administrator account.

2.On administrator dashboard, click on the Visit your Admin page tile.

3.On the Home window, Click ACCOUNT & SETTINGS.

4.Under Account and Settings, click the Users tab and click SingleSign-On (SSO).

5. Under SingleSign-on (SSO), complete the following fields:

SSO integration type Select SAML2.0
Identity provider (IdP)

Enter the ISSUER/ENTITY ID URL that is provided on the SafeNet Trusted Access console.

 

You can copy this URL by clicking the Copy to Clipboard icon available next to the ISSUER/ENTITY ID field.

Certificate fingerprint Enter the certificate fingerprint of SafeNet Trusted Access (for example, 78 bc 71 77 a8 53 ee 28 8a b8 6a 14 aa 52 2a 67 60 e8 fc 65) that you obtained from the Identity Provider certificate.
Remote sign-in URL

Enter the SINGLESIGNONSERVICE URL that is provided on the SafeNet Trusted Access console.

 

On the SafeNet Trusted Access console, you can copy this URL by clicking the Copy to Clipboard icon available next to the SINGLESIGNONSERVICE field.

Remote sign-out URL

Enter the SINGLESIGNONSERVICE URL that is provided on the SafeNet Trusted Access console.

 

On the SafeNet Trusted Access console, you can copy this URL by clicking the Copy to Clipboard icon available next to the SINGLESIGNONSERVICE field.

TargetedID Enter urn:oid:1.3.6.1.4.1.5923.1.1.1.10
First name Enter urn:oid:2.5.4.42
Last name Enter urn:oid:2.5.4.4
Email Enter urn:oid:0.9.2342.19200300.100.1.3
Group Enter group.
Sign SAML requests Select this option.

5.Click Save.

Obtaining TalentLMS Metadata

In a web browser, open the TalentLMS metadata URL, https://<Domain name>.talentlms.com/simplesaml/module.php/saml/sp/metadata.php/<Domain name>.talentlms.com. The metadata will be downloaded automatically. Save it as a .xml file on your local machine.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in TalentLMS, the second step is to activate the TalentLMS application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the TalentLMS application that you added previously is currently in inactive state by default. To configure and activate this application, click the application (for example, TalentLMS) and proceed to the next step.

2.Under STA Setup, perform the following steps:

a.Click Upload TalentLMS metadata.

b.On the Metadata Upload window, click Browse to search and select the TalentLMS metadata that you have downloaded earlier.

Under Account Details, the service provider metadata information is displayed.

c.Under User Portal Settings, in the SERVICE LOGIN URL field, enter the application login URL, https://<domain name>.talentlms.com.

For rest of the fields, modify the default values as per your preferred configuration.

d.Click Save Configuration to save the details and activate the TalentLMS application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the TalentLMS login URL, https://<Domain Name>.talentlms.com/index. Click Login with SAML 2.0. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the TalentLMS user portal after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the TalentLMS application icon, you should be redirected to the TalentLMS user portal after authentication.

 

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.