Configure SSO in Virtana Platform

To configure SSO in Virtana Platform, you simply have to enter the identity provider (IdP) SSO metadata URL that is viewable in your IdP account. This URL accesses SAML metadata XML files that allow the IdP and service provider (SP) to share configuration information.

About This Task

The domain used in the administrator's email address is the domain that the SSO account is bound to in Virtana Platform. All users with the same domain as the administrator will be redirected to the IdP when they log in.

Prerequisites

You must have configured a Virtana Platform app in your IdP account and made a note of the IdP metadata URL.

You need an administrator role with credentials-based login to Virtana Platform.

Steps

  1. Log in to Virtana Platform and navigate to Settings > Login & Permissions.

  2. Click Configure SAML 2.0 SSO.

  3. Enter the Identify Provider Metadata URL and click Verify Metadata.

    If the URL is correct, the following Configuration Parameters are displayed from the metadata file:

    • IdP Issuer ID

      Example: http://www.<service-provider>.com/<aaa111bbb222ccc333dd>

    • IdP SSO URL

      Example: http://virtana-platform.<service-provider>.com/virtanaplf/<eeff4455gg66hh77jj88>/sso/saml

    • X.509 Certificate

      Example: ----BEGIN CERTIFICATE----

      abCD123eFgH456JkLM789npQR0123STUV4567wXyZ890ABcd098EfGh765JKlm4321...

      ----END CERTIFICATE----

  4. Click Save.

    The SSO Configuration page displays, listing the SAML SSO you just configured.

  5. Click down arrows (down arrows) to see the configuration information for SSO, including the following:

    • Tenant ID

    • Email Domain

    • SP Entity ID

    • IdP Metadata URL

    • IdP

    • IdP Issuer ID

    • IdP SSO URL

  6. [Optional] Click Log in using SSO Provider to log in to Virtana Platform.

  7. [Optional] Click Edit if you need to modify any parameters.

    Important

    Do not modify the metadata URL unless the URL from your IdP changes. If you are changing identity providers, be sure to configure the appropriate settings for Virtana Platform in the new IdP.