SafeNet Trusted Access for Zscaler Private Access (for Users)
Configuring SafeNet Trusted Access for Zscaler Private Access is a three-step process:
1.Zscaler Private Access setup
2.SafeNet Trusted Access setup
As a prerequisite, download the Identity Provider signing certificate from the SafeNet Trusted Access console by clicking the Download X.509 certificate button. You will need this certificate in one of the steps given below.
Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in Zscaler Private Access:
1.Log in to Zscaler Private Access using the https://admin.private.zscaler.com URL.
2.On the administrator dashboard, click Administration.
3.Under AUTHENTICATION, click IdP Configuration.
4.In the right pane, on the top right-hand side corner, click Add IdP Configuration.
5.On the Add IdP Configuration window, perform the following steps:
a.In the Name field, enter a name for the IdP profile (for example, Safenet).
b.In the Single Sign-On URL field, enter the SingleSignOnService URL that is provided on the SafeNet Trusted Access console.
You can copy this URL by clicking on the Copy to Clipboard icon available next to the SingleSignOnService field.
c.In the IdP Entity ID field, enter the ISSUER/Entity ID URL that is provided on the SafeNet Trusted Access console.
You can copy this URL by clicking on the Copy to Clipboard icon available next to the ISSUER/Entity ID field.
d.In the Single Sign-On field, select User.
e.In the IdP Certificate field, click Select file to search and select the IdP certificate that you download earlier from SafeNet Trusted Access console.
f.In the Domains field, select your domain that you registered with Zscaler Private Access and for which you want to perform IdP authentication (for example, safenet.com).
6.Click SAML Metadata.
7.On the SAML Metadata window, click Admin Single Sign-On.
After completing the first step of configuring SafeNet Trusted Access in Zscaler Private Access, the second step is to activate the Zscaler Private Access application in SafeNet Trusted Access by performing the following steps:
1.In the Applications pane, you will notice that the Zscaler Private Access application that you added previously is currently in inactive state by default. To configure and activate this application, click the application (for example, Zscaler Private Access) and proceed to the next step.
2.Under STA Setup, click Upload Certificate to upload the service provider signing certificate that you downloaded earlier in step 8 of Zscaler Private Access Setup.
3.Click Save Configuration to save the details and activate the Zscaler Private Access application in SafeNet Trusted Access.
Open the Zscaler Private Access client on your local machine, enter your user email address and click Login. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and then your Zscaler Private Access client is successfully authenticated using STA.
© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.