Secure Mobile Access 12.4 Administration Guide

Configuring Your SMA Appliance to be a SAML IdP

For your SMA appliance to operate as an Identity Provider, trust needs to be established between the application and your SMA appliance.

To configure your SMA appliance to be SAML IdP

  1. In the AMC, navigate to System Configuration > Services.

  2. In the Access Services section, under SAML Identity Provider, click Configure.

  3. Select Enable SAML 2.0 Identity Provider service to enable the SMA appliance as an Identity Provider.

  4. In the Entity ID field, enter the URL that uniquely identifies your SAML Identity Provider. For example, https://idp.company.com/idp.

  5. Set the value in the Assertion validity field for the time allowance (in seconds) that the application should accept for assertions from your SMA appliance.

  6. In the Endpoint FQDN field, specify an FQDN to which the application will send SAML requests.

    You will need to configure a WorkPlace site in order to customize the FQDN.

    The Signing certificate field displays the location of the certificate used by the IdP to sign its SAML messages. The certificate is automatically selected based on the Endpoint FQDN. (You can configure certificates in the SSL Settings > General page. For more information, see Certificates).

    1. Click the View button to view the signing certificate.

    2. Click Close.

  7. Under SAML IdP Endpoint section, the Login URL and Logout URL is displayed.

    1. Click to copy the URLs.

    2. Click Download

  8. Click the Export button to export the SAML metadata to an XML file that can be imported when configuring applications to accept your SMA appliance as an Identity Provider.
  9. Click Save.

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

  • Hidden
  • Hidden

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.
  • Hidden
  • Hidden