1) Create Logon Procedure

In the DualShield Administration Console, navigate to "Authentication | Logon Procedures".

Click the "+CREATE" button to create a new Logon Procedure like follows:



Name: Apereo (or use any recognisable friendly name)
Type: Web SSO
Click the "SAVE" button to complete creation of the Logon Procedure.

2) Add Logon steps

Highlight the context "..." menu on the Logon Procedure, then select "Logon Steps"



Select the desired authentication methods, for example, "Static Password" (AD Password), then "One-time Password"...

3) Create an Application

On the Administration Console, navigate to "Authentication | Applications".
Create a new Application like follows:



Name: Apereo (or use another friendly name)
Realm: Select your interna; AD Realm
Logon Procedure: As created in the previous step.

4) Bind the Application to an SSO Server Agent

Select the context "..." menu on the newly created Application, then select "Agents"



Select from the Agent list, "Single Sign-on Server". Then select "SAVE" button to confirm.


5) Download the IDP Metadata file

Navigate to "SSO | SSO Servers"
Select the context "..." menu on "Single Sign-on Server", then option "Download IdP MetaData"



The browser will save "Single Sign-on Server metadata.xml" to your local machine.

  • No labels