Online Help

SafeNet Trusted Access for ManageEngine ServiceDesk Plus

Overview

The application template provides the ability to enable single sign-on for users accessing the ManageEngine ServiceDesk Plus application through SafeNet Trusted Access.

The following use cases can be configured for ManageEngine ServiceDesk Plus:

SP-initiated SSO

Just-in-Time (JIT) Provisioning

Configuring SafeNet Trusted Access for ManageEngine ServiceDesk Plus is a three-step process:

1.ManageEngine ServiceDesk Plus setup

2.SafeNet Trusted Access setup

3.Verify authentication

ManageEngine ServiceDesk Plus Setup

As prerequisites,

Download the Identity Provider signing certificate from the SafeNet Trusted Access console by clicking the Download X.509 certificate button. Change the extension of this certificate from .crt to .cer. You will need this certificate in one of the steps given below.

Verify your organization primary domain. To perform this task, go to ESM portal > Verified Domains > Add new Domain > Click to verify and under DNS, enter the CName record value.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in ManageEngine ServiceDesk Plus:

1.Log in to ManageEngine ServiceDesk Plus Plus as an administrator using the ManageEngine ServiceDesk Plus login URL (for example, https://sdpondemand.manageengine.com/Login.jsp).

2.On the console, at the top right-hand side corner, click ESM Directory.

3.In the left pane, click Verified Domains.

4.On the Verified Domain window, ensure that the Status of the listed domain is Verified Primary Domain.

5.In the left pane, click SAML Authentication.

6.In the right pane, under Configure SAML Authentication, perform the following steps :

a.In the IdP Login URL and IdP Logout URL fields, enter the SINGLESIGNONSERVICE URL that is provided on the SafeNet Trusted Access console.

On the SafeNet Trusted Access console, you can copy this URL by clicking on the Copy to Clipboard icon available next to the SINGLESIGNONSERVICE field.

b.Next to the IdP’s Certificate field, click Choose File to search and select the identity provider signing certificate (in the .cer format) that you downloaded earlier from the STA console.

c.Click Save.

SAML Single Logout Setup

Perform the following steps to configure SAML single logout:

1.Log in to Zoho Workspace as an administrator using the https://accounts.zoho.com/signin? URL.

2.Click the Preferences tile.

3.In the left pane, under Settings, click SAML Authentication.

4.In the right pane, under SAML Authentication, click Edit.

5.Perform the following steps:

a.Ensure that the Login URL and Logout URL fields are automatically filled with the SINGLESIGNONSERVICE URL that is provided on the SafeNet Trusted Access console.

Note:  On the SafeNet Trusted Access console, you can copy this URL by clicking on the Copy to Clipboard icon available next to the SINGLESIGNONSERVICE field.

b.Select Do you need Logout Response?.

c.Under PublicKey field, select Get key from file, and click Choose File to search and select the identity provider signing certificate that you downloaded earlier from the SafeNet Trusted Access console.

d.Click Update.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in ManageEngine ServiceDesk Plus, the second step is to activate the ManageEngine ServiceDesk Plus application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, the ManageEngine ServiceDesk Plus application you added earlier is in the inactive state by default. To configure and activate this application, click the application (for example, ManageEngine ServiceDesk Plus) and proceed to the next step.

2.Under STA Setup, perform the following steps:

a.In the VERIFIED DOMAIN field, enter the verified domain name (for example, Safenet.com) that you configured earlier in step 4 of ManageEngine ServiceDesk Plus Setup.

a.Under User Portal Settings, in the SERVICE LOGIN URL field, enter default domain URL of your organization, https://<Verified Domain name>.sdpondemand.manageengine.com that is available under ESM Directory > ESM Portal > URL for Organisation Portal.

For example, https://safenet.sdpondemand.manageengine.com

3.Click Save Configuration to save the details and activate the ManageEngine ServiceDesk Plus application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the <Verified Domain>.sdpondemand.manageengine.com login URL (for example,safenet.sdpondemand.manageengine.com).

You will be redirected to your SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the ManageEngine ServiceDesk Plus cloud dashboard after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click the ManageEngine ServiceDesk Plus application icon. You should be successfully logged in to the ManageEngine ServiceDesk Plus cloud dashboard after authentication.

 

© 2019 SafeNet Trusted Access. Various trademarks are held by their respective owners.