Online Help

SafeNet Trusted Access for AirWatch

Overview

Configuring SafeNet Trusted Access for AirWatch is a three-step process:

1.AirWatch setup

2.SafeNet Trusted Access setup

3.Verify Authentication

AirWatch Setup

As a prerequisite, download the Identity Provider metadata from the SafeNet Trusted Access console by clicking on Download metadata file. You will need this metadata in one of the steps below.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in AirWatch:

1.Log in to AirWatch as an administrator.

2.On the administrator dashboard, in the left pane, click GROUPS & SETTINGS and then in the right pane, click All Settings.

3.On the Settings window, in the right pane, under System, click on Enterprise Integration and then under Enterprise Integration, click on Directory Services.

4.Under Directory Services, click Skip wizard and configure manually.

5.On the Server tab, ensure that the Current Settings are selected as Override, and then complete the following fields:

Field Value to be Set
Directory Type Select None.
Use SAML For Authentication Select Enabled.
Enable SAML Authentication For Select Both.
 

6.Under SAML 2.0, next to the Import Identity Provider Settings field, click Upload.

7.On the Add window, click Choose File to search and select the Identity Provider metadata that your downloaded from the SafeNet Trusted Access console.

8.Scroll down and click Save.

9.Under Request, perform the following steps:

a.In the Request Binding Type field, select the POST option.

b.In the NameID Format field, ensure that Unspecified is selected.

c.In the Authentication Request Security field, ensure that None is selected.

10.Under Response, perform the following steps:

a.In the Response Binding Type field, select the POST option.

b.In the Authentication Response Security field, select Validate Response Signatures.

c.Click Save.

d.Click Export Service Provider Settings. The AirWatch metadata will be downloaded automatically on your local machine.

Obtaining Group ID

For verifying authentication, you need your AirWatch GroupID that is configured for SAML. Perform the following steps to locate the AirWatch GroupID:

1.On the AirWatch administrator dashboard, click GROUPS & SETTINGS > Groups > Organization Groups > Organization Group Details.

2.On the Organization Group Details tab, the GroupID is displayed.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in AirWatch, the second step is to activate the AirWatch application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the AirWatch application that you added previously is currently in inactive state by default. To configure and activate this application, click the application (for example, AirWatch) and proceed to the next step.

2.Under STA Setup, click Upload AirWatch Metadata.

3.On the Metadata upload window, click Browse to search and select the AirWatch metadata that you downloaded earlier in step 10(d) of the AirWatch Setup section.

4.Under User Portal Settings, in the SERVICE LOGIN URL field, enter the application login URL,

https://<Fully Qualified domain name of the AirWatch server machine>/AirWatch/Login?GID=<AirWatch GroupID>

For example, https://hol.awmdm.com/AirWatch/Login?GID=example123

5.Click Save Configuration to save the details and activate the AirWatch application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the AirWatch login URL, https://<Fully Qualified domain name of the AirWatch server machine>/AirWatch/Login?GID=<AirWatch GroupID>. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the AirWatch support portal after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the AirWatch application icon, you should be redirected to the AirWatch support portal after authentication.

 

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.