Configure SAML for access application

When you use SAML as the application-facing authentication mechanism for an EAA access application, you need to select it in the application's advanced settings. You then go to the native application and enter the EAA application SAML IdP settings. Enterprise Application Access provides an option to download this metadata. You can upload it to the native application. You may also manually enter the information into the native application.

  1. In the EAA Management Portal navigation menu, select Applications.

  2. On the application card, click Settings, and select ADVANCED SETTINGS.

  3. In Application-facing Authentication Mechanism, select SAML.

  4. Click Save & go to SAML Settings.
    The SAML settings tab appears.

  5. Click Download Metadata File and save it in a safe location.

Next, configure the native application SSO settings.

  1. In a new browser window, open the native application.

  2. Each native application's settings may vary. Go to the native application SSO configuration section.

  3. Enter the same SAML settings as they are in Enterprise Application Access. You may also have the option to upload the EAA SAML metadata file.

  4. Save the configuration of the native application. The native application may provide additional information, such as end points, certificates, or additional user attributes.

  5. Keep the native application window open and return to the EAA application SAML settings window. Manually enter the end points and other SSO/SAML related attributes that the native application provided.

  6. Review the user attributes in the EAA application SAML settings against those of the native application. Make sure that the attribute fields in the EAA application SAML settings match those of the native application.

  7. Some native applications need attribute statements. If your native application needs them, enter Attribute Name and Name ID Format into the EAA application SAML settings fields.

  8. Click Save and go to Deployment.

  9. Deploy the application.