Online Help

SafeNet Trusted Access for Exium

Overview

The application template provides the ability to enable single sign-on (SSO) using the Security Assertion Markup Language (SAML) protocol for users accessing the Exium application through SafeNet Trusted Access (STA).

The following use cases can be configured for Exium:

>SP-initiated SSO

>Just-in-Time (JIT) provisioning

Configuring SafeNet Trusted Access for Exium is a three-step process:

1.Exium setup

2.SafeNet Trusted Access setup

3.Verify authentication

Exium Setup

As prerequisites,

>Download and install the Exium agent application using the https://speerity.net/exium/downloads URL.

>From the SafeNet Trusted Access Console, copy the value of the Metadata URL field and paste it in a text editor.

You can copy the field's value by clicking on the Copy to Clipboard icon that is available next to the field. You will need the value while configuring SafeNet Trusted Access in Exium.

Perform the following steps to configure SafeNet Trusted Access (STA) as your identity provider (IdP) in Exium:

1.Log in to Exium as an administrator using the https://speerity.net URL.

2.In the left pane, click Admin Console.

3.Select the Settings tile.

4.Under Profile, go to the Sign-in tab.

5.Under Activate Sign-in Authentication, perform the following steps:

a.Under Choose Sign-in Type, select the Custom SAML sign-in type.

b.Under Choose Sign-in Options, perform the following steps:

i.In the SAML 2.0 IDP Metadata XML/URL Content field, enter the IdP Metadata URL that you copied earlier as a prerequisite.

ii.Next to the SAML 2.0 SSO URL field, click Copy to copy the URL and paste it in a text editor. You will need the URL while configuring Exium in STA.

iii.Next to the SAML 2.0 SP Entity ID field, click Copy to copy the entity ID and paste it in the text editor. You will need the entity ID while configuring Exium in STA.

iv.Click Save.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in Exium, the second step is to activate the Exium application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, the Exium application you added earlier is in the inactive state by default. To configure and activate this application, click the application (for example, Exium) and proceed to the next step.

2.Under STA Setup, perform the following steps:

a.In the ENTITY ID field, enter the SAML 2.0 SP Entity ID of Exium that you copied earlier in step 5(b)(iii) of Exium Setup.

b.In the ASSERTION CONSUMER SERVICE URL field, enter the SAML 2.0 SSO URL of Exium that you copied earlier in step 5(b)(ii) of Exium Setup.

c.Under User Login ID Mapping, in the NAME ID field, ensure that Email address is selected.

d.Under User Portal Settings, in the SERVICE LOGIN URL field, enter https://speerity.net.

e.Click Save to save the details.

3.On the Assign tab, under Assign to Users, select an assignment option (for example, All users) as per your preferred configuration, and click Save to activate the Exium application in STA.

Verify Authentication

Navigate to the Exium agent application. On the Windows task bar, in the notification area, click the Speerity icon to launch the agent. Enter the workspace name and click Continue.

You will be redirected to your SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the Exium application after authentication.

Copyright © 2023 Thales Group

All Rights Reserved.