In this page, Ubisecure Certificate AP is integrated with Ubisecure SSO. Ubisecure Certificate AP works as a SAML authentication method from the point of view of Ubisecure SSO.
Configuring Ubisecure SSO
A new authentication method is to be created corresponding the Certificate AP
Open Ubisecure SSO Management and create a new SAML authentication method
Figure 1. Creating the SAML method
Obtain the SAML2 metadata of Certificate AP by either:
downloading it from the respective server at
the domain depending on Certificate AP deployment location. You will need a client certificate to be able to do this.
generating it on the command line as in the example below:
Upload the metadata of Certificate AP to the created SAML method. .
Figure 2. Uploading the metadata of the Certificate AP to the SAML method in Ubilogin SSO
- Enable the method
Set Certificate AP to Trust Ubisecure SSO
The metadata of Ubisecure SSO must be downloaded to the Certificate AP in order to create a trust relationship.
Download the Ubisecure SSO metadata by pressing [Download Metadata] link:
Figure 3. Downloading the metadata of Ubisecure SSO
- Place the metadata in
Restart Certificate AP
Now you can log in to an application by using the Certificate AP method. See Ubisecure Management user interface - SSO pages for instructions on how to attach an authentication method to a web application and create a group for users of certificates.