Create a Web logon procedure

1. Login to the DualShield Management Console
2. In the main menu, select “Authentication | Logon Procedure”
3. Click the “Create” button on the toolbar
4. Enter “Name” and select “Web SSO” as the type
   
   
   
   
5. Click “Save”
6. Click the Context Menu icon of the newly created logon procedure, select “Logon Steps”
7. In the popup windows, click the “Create” button on the toolbar
8. Select the authentication method.
   
   

Create a Web application

1. In the main menu, select “Authentication | Application”
2. Click the “Create” button on the toolbar
3. Enter “Name”
4. Select “Realm”
5. Select the newly created logon procedure
   
   
   
   
6. Click "Save" 
7. Click the context menu of the newly created application, select "Agent" 
8. Select the SSO Server 
   
   
   
   
9. Click "Save"
10. Click the context menu of the newly created application, select "Self Test" 
    
    

Download the DualShield IdP Metadata

1. In the main menu, select " SSO | SSO Servers" 
2. Click "Download IdP Metadata", and select the application created earlier.

Create a Service Provider 

In order to create a service provider for Splunk, firstly complete Splunk SAML configuration and download the Service Provider (SP) Metadata. 

1. In the main menu, select " SSO | Service Providers" 
2. Click "Create"
3. Enter "Name", Select Type as "SAML 2.0"
4. Copy the content of Service Provider Metadata (SPMetadata.xml) into the "Metadata" field. 
   
   
   
   
5. Click Edit for Attribute and create a role attribute map to a fix value that match the name of the Splunk group for instance: admin
   
6. Select "User Principle Name" on NameID Fromat drop down list.