Online Help

SafeNet Trusted Access for SugarCRM

Overview

Configuring SafeNet Trusted Access for SugarCRM is a three-step process:

1.SugarCRM setup

2.SafeNet Trusted Access setup

3.Verify Authentication

SugarCRM Setup

As a prerequisite, download the Identity Provider metadata from the SafeNet Trusted Access Console by clicking the Download Metadata button. You will need this metadata in one of the steps mentioned below.

1.Log in to the SugarCRM Management Console as an administrator.

2.In the upper-right corner, click the admin icon and select Administration.

3.In the Administration window, under Users, click Password Management.

4.In the Password Management window, under SAML Authentication, select Enable SAML Authentication.

5.Under SAML Authentication, perform the following steps:

a.Click Import IdP Metadata File to search and select the metadata you downloaded earlier from the SafeNet Trusted Access Console.

b.In the SugarCRM Entity ID field, enter the name (for example, php-saml).

c.Select Load Login screen in same window to avoid pop-up blocking check box.

d.In the Request Signing Private Key field, click Choose File to upload your SugarCRM account Signing Certificate Private Key.

e.In the Request Signing Certificate field, click Choose File to upload your SugarCRM account Signing Certificate.

f.Select other required parameters.

g.Click Save.

6.In the upper-right corner, click the admin icon and select Profile.

7. Click Users and select the user (for example, bob candy) you want to enable or perform SAML Authentication on.

8.Click Edit to modify user profile details.

9. Click the Advanced tab. Under User Settings section, select SAMLAuthenticate Only check box.

10. Click Save.

Obtaining Metadata Information

To obtain the metadata, download the metadata file of your application by performing the following steps:

1.On the SugarCRM Management Console, click the admin icon and select Administration.

2.In the Administration window, under Users, click Password Management.

3.In the Password Management window, click Export Metadata File. This automatically downloads SugarCRM Metadata.xml file in your local machine.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in SugarCRM, the second step is to activate the SugarCRM application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the SugarCRM application you added earlier is currently in inactive state by default. To configure and activate this application, click the application (for example, SugarCRM) and proceed to the next step.

2.Under STA Setup, click Upload SugarCRM Metadata.

3.In the Metadata upload window, click Browse to search and select SugarCRM metadata.

4.Under Account Details, service provider metadata information is displayed.

5.Click Save Configuration to save the details and activate the SugarCRM application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the https://example.sugarcrm.com URL to log in to your SugarCRM domain. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the SugarCRM homepage after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the SugarCRM application icon, you should be redirected to the SugarCRM homepage after authentication.

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.