Online Help

SafeNet Trusted Access for Workplace by Facebook

Overview

Configuring SafeNet Trusted Access for Workplace by Facebook is a three-step process:

1.SafeNet Trusted Access setup

2.Workplace by Facebook setup

3.Verify authentication

SafeNet Trusted Access Setup

Activate the Workplace by Facebook application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, you will notice that the Workplace by Facebook application that you added previously is currently in inactive state by default. To configure and activate this application, click on the application (for example, Workplace by Facebook) and proceed to the next step.

2.Under STA Setup, complete the following fields:

Field Value to be Set
AUDIENCE URL Enter the Audience URL that is available in Workplace by Facebook. For example, https://www.facebook.com/company/173789809845758

To obtain the audience URL, you need to perform the following steps in Workplace by Facebook as an administrator:

1.On the Workplace by Facebook dashboard, click Admin panel.

2.In the left pane, under Setup, click Authentication and then in the right pane, in the Log in field, select SSO.

3.Scroll down, under SAML configuration, obtain the Audience URL.


ACS (ASSERTION CONSUMER SERVICE) URL Enter the https://<Domain Name>.facebook.com/work/saml.php URL.

Where, <Domain Name> is your company's domain name that you entered when creating the Workplace by Facebook account.

For example, https://safenet.facebook.com/work/saml.php
 
 

4.Click Save Configuration to save the details and activate the Workplace by Facebook application in SafeNet Trusted Access.

Workplace by Facebook Setup

As prerequisites:

Create a user account (for example, alice) in the identity provider with the Workplace by Facebook administrator’s email address. This user account will be used to verify the Identity Provider configuration in Workplace by Facebook.

Download the Identity Provider Signing Certificate from the SafeNet Trusted Access console by clicking the Download X.509 certificate button. You will need this certificate in one of the steps below.

Perform the following steps to configure SafeNet Trusted Access as your Identity Provider in Workplace by Facebook:

1.Log in to the Workplace by Facebook administrator dashboard using the https://<Domain Name>.facebook.com/login URL, where, <Domain Name> is your company's domain name that you entered when creating the Workplace by Facebook account.

2.On the Workplace by Facebook administrator dashboard, in the left pane, under EXPLORE, click Admin panel.

3.Under Setup, click Authentication and then in the right pane, under Authentication, perform the following steps:

a.Under Log in, select SSO.

b.In the SAML URL field, enter the SINGLESIGNONSERVICE URL that is provided on the SafeNet Trusted Access console.

You can copy this URL by clicking on the Copy to Clipboard icon available next to the SINGLESIGNONSERVICE field.

c.In the SAML issuer URI field, enter the ISSUER/ENTITY ID URL that is provided on the SafeNet Trusted Access console.

You can copy this URL by clicking on the Copy to Clipboard icon available next to the ISSUER/ENTITY ID field.

d.Open the Identity Provider Signing Certificate that you download earlier from the SafeNet Trusted Access console in Notepad, and then copy the entire text of the certificate.

e.In the SAML certificate field, paste the text of the Identity Provider Signing Certificate.

f.Click Save.

 
 

4.On the Test SSO Changes window, click Test SSO. The Identity Provider login window will be displayed for the verification of the Identity Provider configuration in Workplace by Facebook. In the Username field, enter your identity provider user name that contains the Workplace by Facebook administrator’s email ID and then click LOGIN.

5.In the Password field, enter the one-time password (OTP) generated on the Gemalto token, and then click LOGIN.

6.On the SSO Authenticated window, a success message is displayed. Click Close Window.

Verify Authentication

Using STA Console

Navigate to the Workplace by Facebook login URL, https://<Domain Name>.facebook.com, where, <Domain Name> is your company's domain name that you entered when creating the Workplace by Facebook account. On the Workplace by Facebook dashboard, click Login with SSO. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the Workplace by Facebook support portal after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click on the Workplace by Facebook application icon, you should be redirected to the Workplace by Facebook support portal after authentication.

 

© 2018 SafeNet Trusted Access. Various trademarks held by their respective owners.