Online Help

SafeNet Trusted Access for Sonicwall Secure Mobile Access

Overview

Configuring SafeNet Trusted Access for Sonicwall Secure Mobile Access is a three-step process:

1.Sonicwall Secure Mobile Access setup

2.SafeNet Trusted Access setup

3.Verify Authentication

Sonicwall Secure Mobile Access Setup

As a prerequisite, download the signing certificate from the SafeNet Trusted Access Console by clicking the Download X.509 certificate button. You will need this certificate in one of the steps mentioned below.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in Sonicwall Secure Mobile Access:

1.Log in to the Sonicwall Secure Mobile Access as an administrator using the following URL: https://<workplace-site-name or IP address>/:<Port number>.

Here, https://<workplace-site-name or IP address> is the IP address of the appliance Web UI.
<Port number> is the Web UI port number, you configured for the Sonicwall Secure Mobile Access appliance.

2.In the Secure Mobile Access Management Console window, in the left, under System Configuration, click SSL Settings.

3.On the SSL Settings tab, in the right, under CA certificates > 157 certificates, click the Edit link.

4.Click New.

5.Under CA Certificates > Import CA Certificate, click Choose File to search and select the signing certificate, you downloaded earlier from the SafeNet Trusted Access Console, and click Import.

6.In the Secure Mobile Access Management Console window, in the left, under User Access, click Realms.

7.Click the click here link.
This link appears, if you have not added any realm earlier.

8.Under Realms > Configure Realm, on the General tab, complete the following details:

a.In the Name field, enter a name for the realm.

b.Confirm that Status is set to Enabled and the Display this realm check box is selected.

c.Next to the Authentication server field, click New.

d.Under Authentication directory, select the SAML2.0 Identity Provider option, and click Continue.

e.Under Authentication Servers > Configure Authentication Server, complete the following details, and click Save.

Parameter Value
Name Provide any name to identify authentication server (for example, SAML IDP).
Appliance ID Provide any name or ID to create the SAML entity ID of appliance (for example, SMAAppliance).
Server ID Enter the ISSUER/ENTITY ID URL provided on the SafeNet Trusted Access Console. On the SafeNet Trusted Access Console, you can copy this URL by clicking the Copy to Clipboard icon , next to ISSUER/ENTITY ID field.
Authentication Service URL Enter the SingleSignOnService URL provided on the SafeNet Trusted Access Console. On the SafeNet Trusted Access Console, you can copy this URL by clicking the Copy to Clipboard icon , next to SINGLESIGNONSERVICE field.
Logout Service URL Enter the SingleSignOnService URL provided on the SafeNet Trusted Access Console. On the SafeNet Trusted Access Console, you can copy this URL by clicking the Copy to Clipboard icon , next to SINGLESIGNONSERVICE field.
Trust the following certificate Select the STA certificate, you imported earlier in step 5.


f.Under Realms > Configure Realm, in the Authentication Server field, the newly created authentication server (for example, SAML IDP) is populated . Click Next.

g.Click Finish.
A realm is created and its details are displayed.

9.In the upper right corner of Sonicwall Secure Mobile Access Console, click the Pending changes link.

10.In the Apply Pending Changes window, click Apply Changes.

11.Click Close.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in Sonicwall Secure Mobile Access, the second step is to activate the Sonicwall Secure Mobile Access application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the Sonicwall Secure Mobile Access application you added earlier is currently inactive state by default. To configure and activate this application, click the application (for example, Sonicwall Secure Mobile Access) and proceed to the next step.

2.Under STA Setup, complete the following fields:

Parameter Value
Appliance ID Enter the Service Provider Entity ID. This value must be same as Appliance ID, you entered while creating a realm in step 8(e) (for example, SMAAppliance).
Authentication Service URL Enter the following URL: https://<workplace-site-name or IP address >/saml2ssoconsumer.
Logout Service URL Enter the following URL: https://<workplace-site-name or IP address >/workplace/access/exec/logoff.
Name ID Confirm if SAS User ID is selected, as required by Sonicwall Secure Mobile Access.

3.Under User Portal Settings, in the SERVICE LOGIN URL field, enter the application login URL (for example, https://<workplace-site-name or IP address >).

4.Click Save Configuration to save the details and activate the Sonicwall Secure Mobile Access application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the https://<workplace-site-name or IP address> URL to log in to your Sonicwall Secure Mobile Access user portal. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the Sonicwall Secure Mobile Access user portal after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the Sonicwall Secure Mobile Access application icon, you should be redirected to the Sonicwall Secure Mobile Access user portal after authentication.

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.