Online Help

SafeNet Trusted Access for Qualys Cloud Platform

Overview

Configuring SafeNet Trusted Access for Qualys Cloud Platform is a three-step process:

1.Qualys Cloud Platform setup

2.SafeNet Trusted Access setup

3.Verify authentication

Qualys Cloud Platform Setup

As a prerequisite, download the Identity Provider signing certificate from the SafeNet Trusted Access console by clicking the Download X.509 certificate button. You will need this certificate in one of the steps given below.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in Qualys Cloud Platform:

1.Log in to Qualys Cloud Platform as an administrator and then on the top right-hand side corner, click on your name, and then click Account Settings.

2.Click the Users tab, and perform the following steps:

a.In the Name column, select the user for which you want to enable SAML SSO.

b.For the selected user, in the Login column, in the drop down list, select Edit.

3.On the Edit User window, under General Information, in the External ID field, enter the unique user identifier (for example, bob@example.com).

4.In the left pane, click Security and then in the right pane, under SAML SSO, select the Enable SAML SSO checkbox.

6. Click Save.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in Qualys Cloud Platform, the second step is to activate the Qualys Cloud Platform application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the Qualys Cloud Platform application that you added previously is currently in inactive state by default. To configure and activate this application, click the application (for example, Qualys Cloud Platform) and proceed to the next step.

2.Under STA Setup, perform the following steps:

a.In the EXTERNAL ID field, enter the unique identifier that you entered earlier in Step 3 of Qualys Cloud Platform Setup.

b.In the PLATFORM NAME and BASE URL fields, enter the values provided by the Qualys Cloud Platform support team.

c.Under User Login ID Mapping, in the NAME ID field, ensure Email address is selected.

d.Under Return Attributes, ensure that qualysguard_external_id is added.

e.For IDP-Initiated SSO, under Advanced Settings, in the IDP INITIATED SSO RELAY STATE field, enter the relay state value available in the unique login URL provided by the Qualys Cloud Platform.

For example, following is the unique URL:

https://qualysguard.qg1.apps.qualys.in/fo/login.php?idm_key=<XYZ>

Where, <XYZ> is the relay state value.

3.Click Save Configuration to save the details and activate the Qualys Cloud Platform application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the Qualys Cloud Platform login URL provided by the Qualys Cloud Platform support team, https://qualysguard.qg1.apps.qualys.in/fo/login.php?idm_key=<XYZ>, where <XYZ> is a unique identifier generated by Qualys Cloud Platform to identify the customer’s subscription. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to your Qualys Cloud Platform user account after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the Qualys Cloud Platform application icon, you should be redirected to your Qualys Cloud Platform user account after authentication.

 

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.