When you use SAML as the application-facing authentication mechanism for an EAA access application, you need to select it in the application's advanced settings. You then go to the native application and enter the EAA application SAML IdP settings. Enterprise Application Access provides an option to download this metadata. You can upload it to the native application. You may also manually enter the information into the native application.
Log in to Enterprise Center.
In the Enterprise Center navigation menu, select Application Access > Applications > Applications.
Select your access application to open it.
In the Authentication > Application-facing Authentication Mechanism select SAML 2.0.
The SAML settings appears.
In the SAML settings click Download and save the EAA SAML metadata file.
Next, you need to configure the native application SSO settings.
- In a new browser window, open the native application.
- Each native application's settings may vary. Go to the native application SSO configuration section.
- Enter the same SAML settings as they are in Enterprise Application Access. You may also have the option to upload the EAA SAML metadata file.
- Save the configuration of the native application. The native application may provide additional information, such as end points, certificates, or additional user attributes.
- Keep the native application window open and return to the EAA application SAML settings window. Manually enter the end points and other SSO/SAML related attributes that the native application provided.
- Review the user attributes in the EAA application SAML settings against those of the native application. Make sure that the attribute fields in the EAA application SAML settings match those of the native application.
- Some native applications need attribute statements. If your native application needs them, enter Attribute Name and Name ID Format into the EAA application SAML settings fields.
Updated 6 months ago