View Source

1) Create Logon Procedure

In the DualShield Administration Console, navigate to "Authentication | Logon Procedures".

Click the "+CREATE" button to create a new Logon Procedure like follows:

DualShield MFA Platform > DualShield Configuration for Apereo Part 1 > image-2024-11-27_17-15-48.png

Name: Apereo (or use any recognisable friendly name)
Type: Web SSO
Click the "SAVE" button to complete creation of the Logon Procedure.

2) Add Logon steps

Highlight the context "..." menu on the Logon Procedure, then select "Logon Steps"

DualShield MFA Platform > DualShield Configuration for Apereo Part 1 > image-2024-11-27_17-19-51.png

Select the desired authentication methods, for example, "Static Password" (AD Password), then "One-time Password"...

DualShield MFA Platform > DualShield Configuration for Apereo Part 1 > image-2024-11-27_17-21-30.png

3) Create an Application

On the Administration Console, navigate to "Authentication | Applications".
Create a new Application like follows:

DualShield MFA Platform > DualShield Configuration for Apereo Part 1 > image-2024-11-27_17-24-40.png

Name: Apereo (or use another friendly name)
Realm: Select your interna; AD Realm
Logon Procedure: As created in the previous step.

4) Bind the Application to an SSO Server Agent

Select the context "..." menu on the newly created Application, then select "Agents"

DualShield MFA Platform > DualShield Configuration for Apereo Part 1 > image-2024-11-27_17-27-3.png

Select from the Agent list, "Single Sign-on Server". Then select "SAVE" button to confirm.

DualShield MFA Platform > DualShield Configuration for Apereo Part 1 > image-2024-11-27_17-28-12.png

5) Download the IDP Metadata file

Navigate to "SSO | SSO Servers"
Select the context "..." menu on "Single Sign-on Server", then option "Download IdP MetaData"

DualShield MFA Platform > DualShield Configuration for Apereo Part 1 > image-2024-11-27_17-33-14.png

The browser will save "Single Sign-on Server metadata.xml" to your local machine.