Online Help

SafeNet Trusted Access for CloudBees Core

Overview

The application template provides the ability to enable single sign-on for users accessing the CloudBees Core application through SafeNet Trusted Access.

The following use cases can be configured for CloudBees Core:

SP-initiated SSO

IdP-initiated SSO

Just-in-Time provisioning

Configuring SafeNet Trusted Access for CloudBees Core is a three-step process:

1.CloudBees Core setup

2.SafeNet Trusted Access setup

3.Verify authentication

CloudBees Core Setup

As a prerequisite, download the Identity Provider metadata from the SafeNet Trusted Access console by clicking the Download metadata file button.

You will need this metadata in one of the steps below.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in CloudBees Core:

1.Log in to CloudBees Core Cloud Operations Center as an administrator using the <Jenkins URL> URL. Here, <Jenkins URL> is your company's URL registered in CloudBees Core Cloud Operations Center.

For example, https://safenet.cloudbees.net/cjoc

2.On the Dashboard, in the left pane, click Manage Jenkins.

3.Under Manage Jenkins, click Manage Plugins.

4.Under Plugin Manager, click the Available tab.

5.Under Available, scroll down, under Miscellaneous, select the SAML Plugin, and click Download now and install after restart.

6. After successfully downloading the SAML plugin, under Update Center, under Installing Plugins/Upgrades, select the Restart Jenkins when installation is complete and no jobs are running check box.

The system prompts you with the following message:

7.Login to CloudBees Core Cloud Operations Center as an administrator again.

8.Under Update Center, in the left, click Manage Jenkins.

9.Under Manage Jenkins, click Configure Global Security.

10.In a text editor, open the IdP metadata that downloaded earlier from the STA console.

11.On the Configure Global Security window, under Security Realm, select the SAML 2.0 option and perform the following steps:

a.In the IdP Metadata field, paste the IdP metadata that you copied in the previous step.

b.Click Validate IdP Metadata.

c.In the Data Binding Method field, select HTTP-POST.

d.At the bottom, click Apply.

e.On the Service Provider Metadata link, right-click and select open in a new tab to open the CloudBees Core metadata.

f.Copy the CloudBees Core metadata and save it on your local machine. This metadata will be used while configuring SafeNet Trusted Access.

g.At the bottom, click Save.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in CloudBees Core, the second step is to activate the CloudBees Core application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, the CloudBees Core application you added earlier is in the inactive state by default. To configure and activate this application, click the application (for example, CloudBees Core) and proceed to the next step.

2.Under STA Setup, perform the following steps:

a.Click Upload CloudBees Core Metadata.

b.On the Metadata Upload window, click Browse to search and select the CloudBees Core metadata that you saved in step11 (f) of CloudBees Core Setup.

Under Account Details, the service provider metadata information is displayed.

c.Click Save Configuration to save the details and activate the CloudBees Core application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the CloudBees Core login URL, <Jenkins URL>/blue, where, Jenkins URL is your company URL registered in CloudBees Core Cloud Operation Center.

You will be redirected to your SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the CloudBees Core application after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click the CloudBees Core application icon. You should be successfully logged in to the CloudBees Core Cloud Operations Center after authentication.

On the Dashboard, in the left pane, click Teams. You will be redirected to the CloudBees Core dashboard.

 

© 2019 SafeNet Trusted Access. Various trademarks are held by their respective owners.