Overview
The application template provides the ability to enable single sign-on for users accessing the InVision application through SafeNet Trusted Access.
The following use cases can be configured for InVision:
•SP-initiated SSO
•IdP-initiated SSO
•Just-in-Time (JIT) provisioning
•SAML Single Logout (SLO)
Configuring SafeNet Trusted Access for InVision is a three-step process:
1.InVision setup
2.SafeNet Trusted Access setup
3.Verify authentication
InVision Setup
As a prerequisite, download the Identity Provider metadata from the SafeNet Trusted Access console by clicking the Download metadata file button. You will need to provide this metadata to the InVision support team for configuring SAML authentication for your InVision account.
Perform the following steps to download the InVision metadata:
1.In a web browser, open the https://<subdomain>.invisionapp.com/sso/metadata URL, where <subdomain> is your enterprise domain name registered with InVision.
For example, https://safenet.invisionapp.com/sso/metadata
2.The metadata is displayed. Copy the metadata, paste it in a text editor, and save it as a .xml file on your local machine.
SafeNet Trusted Access Setup
After completing the first step of configuring SafeNet Trusted Access in InVision, the second step is to activate the InVision application in SafeNet Trusted Access by performing the following steps:
1.In the Applications pane, the InVision application you added earlier is in the inactive state by default. To configure and activate this application, click the application (for example, InVision) and proceed to the next step.
2.Under STA Setup, click Upload InVision Metadata.
3.On the metadata upload window, click Browse to search and select the InVision metadata that you saved in step 2 of the InVision Setup.
Under Account Details, the metadata information is displayed.
4.Click Save Configuration to save the details and activate the InVision application in SafeNet Trusted Access.
Verify Authentication
Using STA Console
Navigate to the InVision login URL, https://<subdomain>.invisionapp.com/. On the InVision login window, click SIGN IN USING SSO.
You will be redirected to your SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the InVision dashboard after authentication.
Using STA User Portal
Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click the InVision application icon. You should be successfully logged in to the InVision dashboard after authentication.
© 2019 SafeNet Trusted Access. Various trademarks are held by their respective owners.