SafeNet Trusted Access for Bugcrowd
Configuring SafeNet Trusted Access for Bugcrowd is a three-step process:
2.SafeNet Trusted Access setup
As a prerequisite, download the Identity Provider signing certificate from the SafeNet Trusted Access console by clicking the Download X.509 certificate button. You will need this certificate in one of the steps below.
Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in Bugcrowd:
1.Log in to Bugcrowd as an organization owner using the https://tracker.bugcrowd.com/user/sign_in URL.
2.On the Bugcrowd portal, on the top right-hand side corner, click the icon and under your organization's name, click Authentication.
3.Under Authentication settings, click Single Sign-on (SSO).
5.Under SAML Settings, perform the following steps:
a.In the IdP Entity ID field, enter the ISSUER/ENTITY ID URL that is provided on the SafeNet Trusted Access console.
You can copy this URL by clicking the Copy to Clipboard icon available next to the ISSUER/ENTITY ID field.
b.In the IdP SSO Target URL field, enter the SINGLESIGNONSERVICE URL that is available on the SafeNet Trusted Access console.
You can copy this URL by clicking the Copy to Clipboard icon available next to the SINGLESIGNONSERVICE field.
c.In a text editor, open the IdP certificate that you downloaded earlier from the SafeNet Trusted Access console and copy the entire text.
d.In the IdP Certificate field, paste the entire certificate text that you copied in the previous step.
e.In SP-initiated SSO field, ensure that Enabled is selected.
f.Click SAVE AUTHENTICATION SETTINGS.
6.Click the Domains tab to verify your email address domain in Bugcrowd.
Note: Users cannot log in to Bugcrowd until their email address domains are verified in Bugcrowd.
Perform the below steps to verify your domain:
a.Under Domain verification, enter the domain name that you want to get verified by Bugcrowd, and click ADD DOMAIN.
b.Under Unverified domains, a verification code is available as provided by Bugcrowd. Copy the verification code and paste it as a TXT record in your DNS (Domain Name System).
After the domain name is verified by Bugcrowd, it will be displayed under Verified domains.
After completing the first step of configuring SafeNet Trusted Access in Bugcrowd, the second step is to activate the Bugcrowd application in SafeNet Trusted Access by performing the following steps:
1.In the Applications pane, the Bugcrowd application you added earlier is in the inactive state by default. To configure and activate this application, click the application (for example, Bugcrowd) and proceed to the next step.
2.Under STA Setup, perform the following steps:
a.Under Account Details, in the ORGANIZATION CODE field, enter the code that you noted down in step 4 of Bugcrowd Setup.
b.Under User Login ID Mapping, in the NAME ID field, ensure that the Email address is selected.
c.Click Save Configuration to save the details and activate the Bugcrowd application in SafeNet Trusted Access.
Navigate to the Bugcrowd login URL, https://tracker.bugcrowd.com/user/sign_in, enter the Email Address with the verified domain name (for example, <username>@safenet.com), and click LOG IN.
You will be redirected to your SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the Bugcrowd dashboard after authentication.
Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click the Bugcrowd application icon, you should be redirected to the Bugcrowd dashboard after authentication.
© 2019 SafeNet Trusted Access. Various trademarks held by their respective owners.