Workflow of SAML SSO on an Appliance

After entering all the required data, you are ready to log in to the appliance with SAML SSO. Before explaining the procedure to log in, the general flow of information is illustrated in the following figure.

SAML SSO Workflow

Follow the below process to login to the appliance. Additionally, you can login to the appliance without SSO by providing valid user credentials.

Process

Follow these steps to login with SSO:

  1. The user provides the FQDN of the appliance on the Web browser.

    For example, the user enters esa.protegrity.com and clicks SAML Single Sign-On.

    • Ensure that the user session on the IdP is active.
    • If the session is idle or inactive, then a screen to enter the IdP credentials will appear.
  2. The browser generates an authorization request and sends it to the IdP for verification.

  3. If the user is authorized, then the IdP generates a SAML token and returns it to the Web browser.

  4. This SAML token is then provided to the appliance to authenticate the user.

  5. The appliance receives the token. If the token is valid, then the permissions of the user are checked.

  6. Once these are validated, the Web UI of the appliance appears.