Configuring Active Directory with AD FS and SAML for Brainloop Secure Dataroom Setup Guide



Similar documents
Egnyte Single Sign-On (SSO) Configuration for Active Directory Federation Services (ADFS)

CA Nimsoft Service Desk

ADFS Integration Guidelines

Security Assertion Markup Language (SAML) Site Manager Setup

Configuring ADFS 3.0 to Communicate with WhosOnLocation SAML

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

Configuration Task 3: (Optional) As part of configuration, you can deploy rules. For more information, see "Deploy Inbox Rules" below.

Windows Live Mail Setup Guide

360 Online authentication

VMware Identity Manager Integration with Active Directory Federation Services 2.0

Acunetix Web Vulnerability Scanner. Getting Started. By Acunetix Ltd.

Client configuration and migration Guide Setting up Thunderbird 3.1

Millennium Drive. Installation Guide

T his feature is add-on service available to Enterprise accounts.

Using Internet or Windows Explorer to Upload Your Site

Integration Guide. SafeNet Authentication Service. Using SAS with Web Application Proxy. Technical Manual Template

Exostar LDAP Proxy / Secure Setup Guide. This document provides information on the following topics:

Customer Tips. Configuring Color Access on the WorkCentre 7328/7335/7345 using Windows Active Directory. for the user. Overview

Cloud Services ADM. Agent Deployment Guide

How to Logon with Domain Credentials to a Server in a Workgroup

Microsoft Office 365 Using SAML Integration Guide

Configuring Color Access on the WorkCentre 7120 Using Microsoft Active Directory Customer Tip

1. Open Thunderbird. If the Import Wizard window opens, select Don t import anything and click Next and go to step 3.

Mozilla Thunderbird: Setup & Configuration Learning Guide

The New Dataroom Center Administration in. Brainloop Secure Dataroom Service Version Administrative Guide for Dataroom Center Managers

Sage HRMS 2014 Sage Employee Self Service Tech Installation Guide for Windows 2003, 2008, and October 2013

Copyright

Virtual Owl. Guide for Windows. University Information Technology Services. Training, Outreach, Learning Technologies & Video Production

ADFS for. LogMeIn and join.me authentication

Windows Firewall Configuration with Group Policy for SyAM System Client Installation

Configuring the Active Directory Plug-in

MadCap Software. Upgrading Guide. Pulse

Configuring Network Load Balancing with Cerberus FTP Server

Outlook Profile Setup Guide Exchange 2010 Quick Start and Detailed Instructions

WinTask x64 Scheduler for Windows 7 64 bit, Windows 8/ bit and Windows 2008 R2 64 bit. Scheduler Quick Start Guide

5. For Display name, Your Full Name or the name you want to appear in the from box when writing or responding to click Next

Pocket ESA Network Server Installation

HELP DOCUMENTATION E-SSOM DEPLOYMENT GUIDE

HOTPin Integration Guide: Salesforce SSO with Active Directory Federated Services

BioWin Network Installation

TSM for Windows Installation Instructions: Download the latest TSM Client Using the following link:

How to install and use the File Sharing Outlook Plugin

Active Directory Management. Agent Deployment Guide

This document details the following four steps in setting up a Web Server (aka Internet Information Services -IIS) on Windows XP:

HOTPin Integration Guide: Google Apps with Active Directory Federated Services

Active Directory Requirements and Setup

Configuring Thunderbird for Flinders Mail at home.

Setup Guide for Exchange Server

Using Microsoft Expression Web to Upload Your Site

Entrust Managed Services PKI. Configuring secure LDAP with Domain Controller digital certificates

Step-by-Step Guide to Setup Instant Messaging (IM) Workspace Datasheet

How to Setup your Account -Apple Mail for Mac OS X 1- Open Mail

Installing The SysAidTM Server Locally

enter the administrator user name and password for that domain.

IIS, FTP Server and Windows

Technical Paper. Defining an ODBC Library in SAS 9.2 Management Console Using Microsoft Windows NT Authentication

Creating and Issuing the Workstation Authentication Certificate Template on the Certification Authority

Installing Policy Patrol on a separate machine

Snow Active Directory Discovery

3. On the Accounts wizard window, select Add a new account, and then click Next.

Wavecrest Certificate

InfoRouter LDAP Authentication Web Service documentation for inforouter Versions 7.5.x & 8.x

Integration with Active Directory

Configuring Outlook for Windows to use your Exchange

How To Install The Snow Active Directory Discovery Service On Windows (Windows) (Windows 7) (Powerbook) (For Windows) (Amd64) (Apple) (Macintosh) (Netbook) And (Windows

SELF SERVICE RESET PASSWORD MANAGEMENT DATABASE REPLICATION GUIDE

How To Set Up Dataprotect

DEPLOYING A VISUAL BASIC.NET APPLICATION

How to set up Outlook Anywhere on your home system

How To Install Ctera Agent On A Pc Or Macbook With Acedo (Windows) On A Macbook Or Macintosh (Windows Xp) On An Ubuntu (Windows 7) On Pc Or Ipad

Installation Guide for Windows May 2016

Setting Up Peak Performance Group Policies

DualShield Authentication Platform

Install and Configure Oracle Outlook Connector

SafeWord Domain Login Agent Step-by-Step Guide

Microsoft Exchange Mailbox Software Setup Guide

Customer Tips. Xerox Network Scanning HTTP/HTTPS Configuration using Microsoft IIS. for the user. Purpose. Background

Active Directory Federation Services

Jolly Server Getting Started Guide

The purpose of this document is to describe how to connect Crystal Reports with BMC Remedy AR System using ODBC.

User Setup for SQL Security

Technical White Paper

White Paper. Installation and Configuration of Fabasoft Folio IMAP Service. Fabasoft Folio 2015 Update Rollup 3

Account Create for Outlook Express

PaperClip. em4 Cloud Client. Manual Setup Guide

Crystal Reports Installation Guide

Installing the Microsoft Network Driver Interface

Alert Notification of Critical Results (ANCR) Public Domain Deployment Instructions

SalesForce SSO with Active Directory Federated Services (ADFS) v2.0 Authenticating Users Using SecurAccess Server by SecurEnvoy

WirelessOffice Administrator LDAP/Active Directory Support

Open Thunderbird. To set up an account in Thunderbird, from the Tools menu select Account Settings; choose account; then click Next.

GE Intelligent Platforms. Activating Licenses Online Using a Local License Server

Secrets of Event Viewer for Active Directory Security Auditing Lepide Software

Installation Guide v3.0

Installing Microsoft Exchange Integration for LifeSize Control

Issue Tracking Anywhere Installation Guide

DigitalPersona Pro Server for Active Directory v4.x Quick Start Installation Guide

CHARTER BUSINESS custom hosting faqs 2010 INTERNET. Q. How do I access my ? Q. How do I change or reset a password for an account?

Configuring Outlook 2013 For IMAP Connections

Transcription:

Configuring Active Directory with AD FS and SAML for Brainloop Secure Dataroom Copyright Brainloop AG, 2004-2015. All rights reserved. Document version 1.0 All trademarks referred to in this document are the property of their respective owners.

Content 1 Introduction... 3 2 Add Relying Party Trust... 3 3 Create Claim Rules... 9 4 Add SAML Logout... 12 5 Appendix: Document revision history... 14 Page 2 of 14

1 Introduction This setup guide is intended for system administrators configuring Active Directory with AD FS (Active Directory Federation Services) and SAML for use with Brainloop Secure Dataroom. For information on setting up SAML authentication in Brainloop Secure Dataroom, please refer to our SAML setup and user guide Configuring SAML Authentication for Brainloop Secure Dataroom. 2 Add Relying Party Trust 1. Start AD FS Management. 2. Select the Relying Party Trusts folder from AD FS Management. 3. Add a new Standard Relying Party Trust from the Actions sidebar. This starts the configuration wizard for a new trust. 4. In the Welcome screen, click Start. 5. In the Select Data Source screen, select the last option, Enter data about the party manually. Page 3 of 14

6. In the Specify Display Name screen, enter a Display name that you recognize in the future and any notes you want to make, then click Next. Page 4 of 14

7. In the Choose Profile screen, select the AD FS profile option and click Next. 8. In the Configure Certificate screen, leave the certificate settings at their defaults and click Next. Page 5 of 14

9. In the Configure URL screen, enable the Enable support for the SAML 2.0 WebSSO protocol option. As the service URL, enter https://my.brainloop.net/newlogin/saml.aspx (or replace my.brainloop.net with your server domain) and click Next. 10. In the Configure Identifiers screen, in the Relying party trust identifier field, enter https://my.brainloop.net/ (or replace my.brainloop.net with your server domain), click Add, then Next. Page 6 of 14

11. In the Configure Multi-factor Authentication Now screen, select the I do not want to configure multi-factor authentication settings for this relying party trust at this time option and click Next. 12. In the Choose Issuance Authorization Rules screen, select the Permit all users to access this relying party option and click Next. Page 7 of 14

13. In the Ready to Add Trust screen, an overview of your settings is displayed. Click Next. 14. In the Finish screen, click the Close button to exit and open the Claim Rules editor. Page 8 of 14

3 Create Claim Rules 1. Once you have completed all the steps described in the previous chapter, the Edit Claim Rules editor is displayed: 2. Click Add Rule. 3. Select the Send LDAP Attributes as Claims template and click Next. Page 9 of 14

4. In the Configure Claim Rule screen, enter a Claim rule name and select Active Directory as your Attribute store. 5. Next, make the following settings: - In the LDAP Attribute column, select E-Mail Addresses. - In the Outgoing Claim Type column, select E-Mail Address. 6. Click Finish. 7. Now, create another new rule by clicking Add Rule, this time selecting Transform an Incoming Claim as the template. Page 10 of 14

8. In the Configure Claim Rule screen, enter a Claim rule name and make the following settings: - Incoming claim type: select E-Mail Address - Outgoing claim type: select Name ID - Outgoing name ID format: select Email - Leave the default rule Pass through all claim values enabled. 9. Click Finish. 10. In the Edit Claim Rules dialog, click OK. Page 11 of 14

4 Add SAML Logout 1. From the Actions sidebar or from the context menu on the created Relying Party Trust, select Properties. 2. Click Add SAML. Page 12 of 14

3. Make the following settings: - Endpoint type: select SAML Logout - Binding: select POST - Trusted URL: type https://my.brainloop.com/newlogin/singlesingout.aspx 4. Click OK. 5. Confirm your changes by clicking OK in the properties dialog. IMPORTANT: In order to be able to log in with SAML, e-mail addresses for users must be defined. Page 13 of 14

5 Appendix: Document revision history Version Date of change Revision 1.0 8 October 2015 First release Page 14 of 14

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information