Versions Compared

Old Version 1

changes.mady.by.user Adam Darwin

Saved on

compared with

New Version Current

changes.mady.by.user Daniel.Juleff

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Updated Images and Syntax

Table of Contents

 


Create a Web logon procedure

  1. Login to the DualShield Management Administration Console
  2. In the main menu, select “Authentication | > Logon Procedure”Procedures”
  3. Click the “Create” “+ CREATE” button on the toolbar, on the right
  4. Enter a recognisable “Name” and select “Web SSO” as the typeType
    Image Removed
    Image Added

  5. Click “Save”“SAVE”
  6. Click the Context Menu icon of the newly created logon procedureLogon Procedure, select “Logon Steps”
  7. In the popup windowswindow, click the “Create” “+ ADD” button on the toolbar
  8. Select the authentication method.
    Image RemovedAdd the necessary Authentication methods here

    Image Added

Create a Web application

  1. In the main menu, select “Authentication | Application”> Applications”
  2. Click the “Create” “+ CREATE” button on the toolbar
  3. Enter a recognisable “Name”
  4. Select your internal “Realm”
  5. Select Add the newly created logon procedure
    Image RemovedLogon Procedure (from the previous step)

    Image Added

  6. Click "Save" 
  7. Click the context "..." menu of the newly created applicationApplication, then select "Agent" 
  8. Select the SSO Server 
    Image Removed"Single Sign-on Server (SSO Server)"

    Image Added

  9. Click "Save"
  10. Click the context "..." menu of the newly created applicationApplication, select then select "Self Test" 
    Image Removed
    Image Added

Download the DualShield IdP Metadata

  1. In the main menu, select navigate to " SSO | > SSO Servers" 
  2. Click the context "..." menu of "Download IdP Metadata", and select the application created earlier.

Image Removed

Create a Service Provider 

  1. Single Sign-on Server (SSO Server") then select "Download Idp MetaData" .
    Note the Name and location of the XML file, saved locally.

Image Added


In order to create a

service provider

Service Provider for Splunk

, firstly complete Splunk SAML configuration and download the

within DualShield - Next complete the "Splunk SAML Configuration"
Plus Download the Splunk Service Provider (SP) Metadata.

 




Create a Service Provider 

  1. In the main menu, select navigate to "SSO | Service Providers" 
  2. Click "Create"the "+ CREATE" button in the toolbar
  3. Select the SSO Server drop-down and select "Single Sign-on Server"
  4. At the 'Application' drop-down, select the Splunk Application previously created.
  5. Enter a suitable "Name"
  6. Set 'Type' Enter "Name", Select Type as "SAML 2.0"

    Image Added

  7. Select the "CREATE METADATA" button.
  8. At the window that appears, paste in to the large Metadata textbox, the Copy the content of Service Provider Metadata (contained in SPMetadata.xml) into the "Metadata" field
    Image Removed

  9. Click Edit for Attribute and create a role attribute map to a fix the "Attributes" tab, to create a new custom Attribute, that will be mapped to a fixed value that match the name of the Splunk group, for instance: "admin
    Image Removed"
  10. Click the "+ CREATE" button
  11. Location at the drop-down, set as "HTTP Body"
  12. Name could be entered as "role"
  13. Beneath the 'Value' section, select "Fixed Value". Then set the Value in the textbox as "admin"

    Image Added

  14. Click "SAVE" to create the custom attribute.

  15. Click back to the 'General Settings' tab, of the Service Provider.
  16.  At the 'NameID Format' field, change this field to Select "User Principle Name" on NameID Fromat drop down list. 
    Image Removed.

    Image Added


  17.  Finally select "SAVE", to complete the Service Provider creation process.