Online Help

SafeNet Trusted Access for Zscaler Private Access (for Administrator)

Overview

Configuring SafeNet Trusted Access for Zscaler Private Access is a three-step process:

1.Zscaler Private Access setup

2.SafeNet Trusted Access setup

3.Verify authentication

Zscaler Private Access Setup

As a prerequisite, download the Identity Provider signing certificate from the SafeNet Trusted Access console by clicking the Download X.509 certificate button. You will need this certificate in one of the steps given below.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in Zscaler Private Access:

1.Log in to Zscaler Private Access using the https://admin.private.zscaler.com URL.

2.On the administrator dashboard, click Administration.

3.Under AUTHENTICATION, click IdP Configuration.

4.In the right pane, on the top right-hand side corner, click Add IdP Configuration.

5.On the Add IdP Configuration window, perform the following steps:

a.In the Name field, enter a name for the IdP profile (for example, Safenet).

b.In the Single Sign-On URL field, enter the SingleSignOnService URL that is provided on the SafeNet Trusted Access console.

You can copy this URL by clicking on the Copy to Clipboard icon available next to the SingleSignOnService field.

c.In the IdP Entity ID field, enter the ISSUER/Entity ID URL that is provided on the SafeNet Trusted Access console.

You can copy this URL by clicking on the Copy to Clipboard icon available next to the ISSUER/Entity ID field.

d.In the Single Sign-On field, select Admin.

e.In the IdP Certificate field, click Select file to search and select the IdP certificate that you download earlier from SafeNet Trusted Access console.

f.In the Domains field, select your domain that you registered with Zscaler Private Access and for which you want to perform IdP authentication (for example, safenet.com).

g.Click Save.

6.Click SAML Metadata.

7.On the SAML Metadata window, click Admin Single Sign-On.

8. Under Service Provider Certificate, click Download Certificate. The service provider certificate will be downloaded automatically. Save it on your local machine.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in Zscaler Private Access, the second step is to activate the Zscaler Private Access application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the Zscaler Private Access application that you added previously is currently in inactive state by default. To configure and activate this application, click the application (for example, Zscaler Private Access) and proceed to the next step.

2.Under STA Setup, click Upload Certificate to upload the service provider signing certificate that you downloaded earlier in step 7 of Zscaler Private Access Setup.

3.Click Save Configuration to save the details and activate the Zscaler Private Access application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the Zscaler Private Access URL, https://admin.private.zscaler.com. You will be redirected to the Zscaler Private Access page, select Single Sign-on using IdP, and click Signin. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the Zscaler Private Access dashboard after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the Zscaler Private Access application icon, you should be redirected to the Zscaler Private Access dashboard after authentication.

 

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.