View Source

Because the Server/workstation is not joined to the domain the type of logon will be 'local logon' Therefore we need to make sure the local logons will be protected even if the machine is moved into a separate location and no longer connected to the network(offline logon).

On the Administration Console go to Shortcuts>Check Policies

Click on on the top right.

Set these Values in the Policy - New Window

Option	Value
Category:	Computer Logon Client
Holder:	Domain
Domain:	Enter the virtual domain name
Name:	Enter a user-friendly name
Enabled:	True

DualShield MFA Platform > Preperation of DualShield Policies > nondom17.png

Scroll down the

DualShield MFA Platform > Preperation of DualShield Policies > Ctera19.png

Click on on the top right.

Fill in the details as per screenshot on right and make sure you select SAML 2.0(Without Metadata) as Type.

DualShield MFA Platform > Preperation of DualShield Policies > Ctera5.png

Now fill out Entity ID and ACS URL.

Option	Value
Entity ID:	https://prefix.yourdomainname.com
ACS URL:	https://prefix.yourdomainname.com/ServicesPortal/saml

DualShield MFA Platform > Preperation of DualShield Policies > Ctera6.png

The completed Service Provider dialogue box will look like this:

DualShield MFA Platform > Preperation of DualShield Policies > Ctera7.png

Click Save.

Download the IDP Metadata file.

Go to SSO>SSO Servers

DualShield MFA Platform > Preperation of DualShield Policies > image2020-10-15_14-49-15.png

Select the drop down menu corresponding to the SSO server you will be using and click on Download IDP Metadata.

DualShield MFA Platform > Preperation of DualShield Policies > image2020-10-15_14-51-57.png