View Source

Create a Service Provider Profile for Secret Server on DualShield

Log into the Dualshield Administration Console

Go to SSO>Service Providers

DualShield MFA Platform > Service Provider Setup on DualShield. > Ctera19.png

Click on on the top right.

Fill in the details as per screenshot on right and make sure you select SAML 2.0 as Type.

Click on Create Metadata

DualShield MFA Platform > Service Provider Setup on DualShield. > VM22.png

Open the Service Provider Metadata file you obtained in Workspace One Configuration.

Copy and past the metadata into Notepad or Notepad ++.

Remove the last three ACS locations and edit the file so it looks as follows.

DualShield MFA Platform > Service Provider Setup on DualShield. > vm17.png

Copy and paste the edited file into the Service Provider Metadata Windows and click Save

DualShield MFA Platform > Service Provider Setup on DualShield. > VM23.png

Please set the SAML Options as below.

DualShield MFA Platform > Service Provider Setup on DualShield. > VM5.png

Select Attributes at the top and then click Create

DualShield MFA Platform > Service Provider Setup on DualShield. > VM24.png

You have to create three attributes.

The first one is as follows:

Option	Value
Location:	HTTP Body
Name:	objectGUID
Format:	basic
Script:	userID.decodeHex().encodeBase64().toString()
Return in Response:	Enabled

DualShield MFA Platform > Service Provider Setup on DualShield. > VM7.png

Click Save.

Click Create to create the second attribute...

DualShield MFA Platform > Service Provider Setup on DualShield. > VM8.png

Click Save.

Click Create to create the third attribute...

DualShield MFA Platform > Service Provider Setup on DualShield. > VM9.png

Click Save.

DualShield MFA Platform > Service Provider Setup on DualShield. > VM6.png

Click Save and Save again.