Integrating CyberArk Identity for SSO
  • PDF

Integrating CyberArk Identity for SSO

  • PDF

This guide provides details about Britive and CyberArk Identity SSO integration.

Configuration Steps

Configuring an Identity Provider on Britive

An identity provider needs to be created in Britive for SSO. 

  1. Login to Britive application with administrator privileges.
  2. Click on Admin->Identity Management from the navigation menu.
  3. Click on the Identity Providers tab.
  4. Click on ADD IDENTITY PROVIDER button.
  5. Enter Name and Description.
  6. Select Identity Provider Type as SAML.
  7. Click Add. A configuration page is displayed.

Configuring SSO on Britive

  1. Click on the Edit icon under SSO Provider in the SSO Configuration tab.
  2. Select Generic from the drop-down list.
  3. Save the changes by clicking the icon next to the selection.
  4. Keep note of the URLs listed here, they are required to complete the SSO configuration on the identity provider portal.

Configuring CyberArk Identity for SSO

  1. Login to CyberArk User Portal as CyberArk identity Administrator. 
  2. Navigate to the Admin Portal.
  3. Navigate to Apps & Widgets -> Web Apps from the sidebar menu and click the Add Web Apps button.
  4. Click on the Custom tab and add the SAML web app.
  5. Enter the following on the Settings page:
    1. Add a Name and Description.
    2. Uncheck the Show in user app list checkbox from the Advanced section.
  6. Enter the following on the Trust page:
    1. Download the Metadata file from the Identity Provider Configuration section.
    2. Select Manual Configuration under Service Provider Configuration.
      1. Enter the entity id provided by the IDP created in Britive.
      2. Enter the Assertion Consumer Service (ACS) URL from IDP created in Britive.
  7. Enter the following on the SAML Response page:
    1. Add “email” as the Attribute Name and “LoginUser.Email” as an Attribute value.
  8. Enter the required permissions on the Permissions page.
  9. Click Save to save the web application.

Configuring SSO metadata on Britive

To complete the SSO configuration, the SAML metadata from the identity provider needs to be imported into the Britive application. 

Follow the steps below to complete the SSO configuration:

  1. Login to Britive application with administrator privileges.
  2. Click on Admin-> Identity Management.
  3. Click on the Identity Providers tab.
  4. Click on the required identity provider.
  5. Click on UPLOAD SAML METADATA. Browse to the identity provider SAML metadata that was downloaded while configuring the identity provider.
  6. Upon successful upload, the SAML settings are displayed.

Bookmark application for IDP-initiated login

  1. Login to CyberArk Portal as CyberArk identity administrator.
  2. Navigate to Admin Portal -> Apps & Widgets -> Web Apps and click Add web apps button.
  3. Click on the Custom tab and add the Bookmark app.
  4. Go to the Application Settings and copy the Initiate SSO URL from the Britive configuration into the URL field.
  5. Add a Name and Description.
  6. Go to the Permissions page and add specific roles.
  7. Save the application.

Was this article helpful?