Configuring Single Sign-On - Platform - BlueCat Gateway - 23.1

Gateway Administration Guide

Locale
English
Product name
BlueCat Gateway
Version
23.1

Like Address Manager, BlueCat Gateway supports Single Sign-On (SSO) features from most identity providers (IdP). To use it, you must configure both the service provider (SP) and IdP settings in Gateway. BlueCat Gateway forwards the information provided in this page to the IdP. After you configure BlueCat Gateway as a service provider, it creates a /metadata endpoint that identifies BlueCat Gateway as a service provider, with data returned in XML format.

To set up SSO, you must obtain signing certificate/metadata URL or information for the settings file from your IdP.

You can configure the Service Provider and Identity Provider settings for SSO in two ways:

  • Manually enter the settings for the Service Provider and IdP Settings in separate fields in the UI.

OR
  • Download the current settings (as JSON files), edit them, then upload the edited files to BlueCat Gateway using an import function available from the UI.

    This option is recommended only for advanced users. It is useful when configuring multiple instances of Gateway, or when setting up Gateway in an automated fashion. In that case, you'll be typically provided with existing files to use.