Create a Web logon procedure
- Login to the DualShield Management Console
- In the main menu, select “Authentication | Logon Procedure”
- Click the “Create” button on the toolbar
- Enter “Name” and select “Web SSO” as the type
- Click “Save”
- Click the Context Menu icon of the newly created logon procedure, select “Logon Steps”
- In the popup windows, click the “Create” button on the toolbar
- Select the authentication method.
Create a Web application
- In the main menu, select “Authentication | Application”
- Click the “Create” button on the toolbar
- Enter “Name”
- Select “Realm”
- Select the newly created logon procedure
- Click "Save"
- Click the context menu of the newly created application, select "Agent"
- Select the SSO Server
- Click "Save"
- Click the context menu of the newly created application, select "Self Test"
Download the DualShield IdP Metadata
- In the main menu, select " SSO | SSO Servers"
- Click "Download IdP Metadata", and select the application created earlier.
Create a Service Provider
In order to create a service provider for Splunk, firstly complete Splunk SAML configuration and download the Service Provider (SP) Metadata.
- In the main menu, select " SSO | Service Providers"
- Click "Create"
- Enter "Name", Select Type as "SAML 2.0"
- Copy the content of Service Provider Metadata (SPMetadata.xml) into the "Metadata" field.
- Click Edit for Attribute and create a role attribute map to a fix value that match the name of the Splunk group for instance: admin
- Select "User Principle Name" on NameID Fromat drop down list.