SafeNet Trusted Access for Oracle Cloud
Configuring SafeNet Trusted Access for Oracle Cloud is a three-step process:
1.Oracle Cloud setup
2.SafeNet Trusted Access setup
As a prerequisite, download the Identity Provider metadata from the SafeNet Trusted Access console by clicking the Download metadata file button. You will need this metadata in one of the steps below.
Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in Oracle Cloud:
1.Log in to Oracle Cloud as an administrator using the https://cloud.oracle.com/en_US/sign-in URL
2.On the Oracle Cloud dashboard, on the top left-hand side corner, click on the icon, scroll down, under Governance and Administration, click Identity.
3.In the left pane, under Identity, click Federation, and in the right pane, click Add Identity Provider.
4.On the Add Identity Provider window, perform the following steps:
a.In the NAME field, enter a name for the identity provider (for example, Safenet).
b.In the DESCRIPTION field, enter a description of the identity provider.
c.In the TYPE field, ensure that the MICROSOFT ACTIVE DIRECTORY FEDERATION SERVICE (ADFS) or SAML 2.0 COMPLAINT IDENTITY PROVIDER option is selected.
d.Click Browse to search and select the identity provider metadata file that you downloaded earlier from the SafeNet Trusted Access console.
f.Under Mapping, in the IDENTITY PROVIDER GROUP field, enter the name of the group that exists in your identity provider. Ensure that the group name (for example, Safenet IDP) must be correct with the correct case.
g.In the OCI GROUP field, select the OCI group that you want to map with the identity provider group.
After completing the first step of configuring SafeNet Trusted Access in Oracle Cloud, the second step is to activate the Oracle Cloud application in SafeNet Trusted Access by performing the following steps:
1.In the Applications pane, the Oracle Cloud application you added earlier is in the inactive state by default. To configure and activate this application, click the application (for example, Oracle Cloud) and proceed to the next step.
2.Under STA Setup, click Upload Oracle Cloud Metadata.
3.On the Metadata Upload window, click Browse to search and and select the Oracle Cloud metadata that you saved earlier in step 5 of the Oracle Cloud Setup.
The service provider metadata information is displayed in the Account Details section.
4.Under User Login ID Mapping, in the NAME ID field, ensure that Email address is selected.
5.Under Return Attributes, ensure that the value, https://auth.oraclecloud.com/saml/claims/groupName is present in the RETURN ATTRIBUTE field.
6.In the USER ATTRIBUTE field, select Groups.
7.Under User Portal Settings, in the SERVICE LOGIN URL field, enter the application login URL (for example, https://console.us-ashburn-1.oraclecloud.com)
8.Click Save Configuration to save the details and activate the Oracle Cloud application in SafeNet Trusted Access.
Navigate to the Oracle Cloud login URL, https://console.<Your Data Region>.oraclecloud.com, enter the name of your Cloud Tenant and click Continue. On the Single Sign-On (SSO) window, select your identity provider (for example, Safenet), and click Continue.
You will be redirected to your SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the Oracle Cloud dashboard after authentication.
Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the Oracle Cloud application icon, enter the name of your Cloud Tenant, and click Continue. You should be successfully logged in to the Oracle Cloud dashboard after authentication.
© 2019 SafeNet Trusted Access. Various trademarks held by their respective owners.