Online Help

SafeNet Trusted Access for MuleSoft Anypoint Platform

Overview

The application template provides the ability to enable single sign-on for users accessing the MuleSoft Anypoint Platform application through SafeNet Trusted Access.

The following use cases can be configured for MuleSoft Anypoint Platform:

IdP-initiated SSO

Just-in-Time (JIT) Provisioning

Single Logout

Configuring SafeNet Trusted Access for MuleSoft Anypoint Platform is a three-step process:

1.MuleSoft Anypoint Platform setup

2.SafeNet Trusted Access setup

3.Verify authentication

MuleSoft Anypoint Platform Setup

As a prerequisite, download the Identity Provider signing certificate from the SafeNet Trusted Access console by clicking the Download X.509 certificate button. You will need this certificate in one of the steps below.

Perform the following steps to configure SafeNet Trusted Access as your identity provider in MuleSoft Anypoint Platform:

1.Log in to MuleSoft Anypoint Platform as an administrator using the https://anypoint.mulesoft.com/login/signin? URL.

2.On the MuleSoft Anypoint Platform dashboard, in the top-left and side corner, click on the icon to open the menu.

3.On the menu, under Management Center, click Access Management.

4.In the left pane, under ACCESS MANAGEMENT, click External Identity.

5.In the right pane, click Identity Management, and select SAML 2.0.

6.Under Identity Management SAML 2.0, perform the following steps:

a.In the Sign On URL field, enter the SINGLESIGNONSERVICE URL that is provided on the SafeNet Trusted Access console.

You can copy this URL by clicking the Copy to Clipboard icon available next to the SINGLESIGNONSERVICE field.

b.In the Sign Off URL field, enter the SINGLESIGNONSERVICE URL that is provided on the SafeNet Trusted Access console.

You can copy this URL by clicking the Copy to Clipboard icon available next to the SINGLESIGNONSERVICE field.

c.In the Issuer field, enter the ISSUER/ENTITY ID URL that is provided on the SafeNet Trusted Access console. You can copy this URL by clicking the Copy to Clipboard icon available next to the ISSUER/ENTITY ID field.

d.In a text editor, open the Signing certificate that you downloaded earlier from the SafeNet Trusted Access console and copy the entire text.

e.In the Public Key field, paste the Signing certificate that you copied in the previous step.

f.In the Audience field, enter an arbitrary string value that identifies your MuleSoft Anypoint Platform organization, <Organisation Domain>.anypoint.mulesoft.com, where <Organisation Domain> is the domain name registered in the MuleSoft Anypoint Platform application.

For example, sfnt.anypoint.mulesoft.com

g.Click Save.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in MuleSoft Anypoint Platform, the second step is to activate the MuleSoft Anypoint Platform application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, the MuleSoft Anypoint Platform application you added earlier is in the inactive state by default. To configure and activate this application, click the application (for example, MuleSoft Anypoint Platform) and proceed to the next step.

2.Under STA Setup, perform the following steps:

a.In the AUDIENCE field, enter your MuleSoft Anypoint Platform organization name that you entered earlier in step 6(f) of MuleSoft Anypoint Platform setup.

b.Under Return Attributes, ensure that the Email Address, First Name, and Last Name attributes are selected.

c.Click Save Configuration to save the details and activate the MuleSoft Anypoint Platform application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the IDP initiated MuleSoft Anypoint Platform login URL, https://idp.safenetid.com/auth/realms/<tenant-referenceid>/protocol/saml/clients/<MuleSoft AnyPoint Platform>, where, <MuleSoft Anypoint Platform> is the application name that you have added in SafeNet Trusted Access.

You will be redirected to your SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the MuleSoft Anypoint Platform portal after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click the MuleSoft Anypoint Platform application icon. You should be successfully logged in to the MuleSoft Anypoint Platform application after authentication.

 

© 2019 SafeNet Trusted Access. Various trademarks are held by their respective owners.