Configuring Britive Identity Provider in Oracle Cloud

Prev Next

Now that you have completed the required prerequisites in Oracle Cloud, you can add Britive as the Identity Provider in Oracle Cloud.

This involves two steps:

  1. Downloading SAML Metadata from Britive
  2. Adding Britive Identity Provider in Oracle Cloud

1. Downloading SAML Metadata from Britive

Perform the following steps to download the SAML metadata from Britive:

Note:
You need to have Britive administrator privileges to download SAML metadata.
  1. Login to the Britive application with administrator privileges.
  2. Click Admin > Security.
  3. Select the SAML Configurations tab.
  4. Click DOWNLOAD SAML METADATA.

This downloads the SAML metadata needed to configure the Identity Provider in Oracle, as an XML file, to your computer. 

2. Adding Britive Identity Provider in Oracle Cloud 

Perform the following steps to add Britive as an Identity Provider in the Oracle cloud:

  1. Log in to Oracle Cloud Console with administrator privileges. 
  2. Click Identity & Security from the navigation menu.
  3. Click Domains from the Identity section.
  4. Click on the Default domain.
  5. Click on the Federation tab.
  6. Select Add SAML IdP under Actions of Identity providers.
  7. Enter the following in the Add SAML identity provider window:
    • Name: Enter a name for the Identity Provider.
    • Description: Enter a description for the Identity Provider.
    • Click Next.
    • Upload the SAML metadata downloaded from Britive in the Import IdP Metadata section. 
  8. Click Next.
  9. Select the default settings in Map user identity and click Next.
  10. Click Create IdP.
  11. Open the newly created IDP and click Configure JIT from the Actionsdrop-down list.
    1. Select Enable Just-In-Time (JIT) provisioning.
    2. Turn on Create a new identity domain user.
    3. Turn on the Update the existing identity domain user.
    4. Enter the following in the Map user attributes section: 
      1. Select NameID for userName.
      2. Select Attribute and type familyName for familyName.
      3. Select NameID for primaryEmailAddress.
      4. Click Add row and enter firstName in Idp user attribute and First name in the Identity domain user attribute.
      5. Select Assign group mapping.
      6. Enter groups in the Group membership attribute name.
      7. Select one of the two options as per the requirement:
        • Assign implicit group membership mappings
        • Define explicit group membership mappings
      8. Select the following under the Assignment rules section:
        • Merge with existing group memberships
        • Ignore the missing group 
  12. Click Update changes.
  13. Click on the Active IdP under the Actions drop-down list.
  14. Click on IdP Policies from the navigation menu.
  15. Click on the Default Identity Provider policy.
  16. Edit the Default IDP Rule.
  17. Add the newly created identity provider in Assign identity providers.
  18. (Optional) Apply conditions and filter IP addresses as required.
  19. Click Save changes.

Possible Error Message

If you add more than three Identity Providers in the Oracle Cloud tenant application, an error is displayed while adding the next Identity Provider.