Adding Egnyte

Question

How do we configure Egnyte for SAML Access.

 

Answer

 To configure Egnyte in the Single Sign On Manager please follow these steps

  1. Select Directory Manager.
  2. Select Groups.
  3. Select the green plus sign in the bottom right corner.
    blue.PNG
  4. Name the Group Egnyte Users.
    Note: If you have other existing Groups for SSO users you can use one of these as well.
  5. Select ADD GROUP.
  6. Select SSO Manager.
  7. Select the green plus sign in the bottom right corner.
    blue.PNG
  8. Select the Catalog Icon.
    blue.PNG
  9. Select Egnyte from catalog.
    1.PNG

  10. Select Application is Enabled.
    2.PNG
  11. Select Protocol Setup.
    3.PNG
    Update the Assertion Consumer Service URL to reflect your own Egnyte domain.
  12. Select Add Application.
    4.PNG
  13. Select Permissions.
  14. Select Add Groups.
    Select the Group you chose in Step 4.
  15. Select Signing and Encryption.
    5.PNG
  16. Select Copy.
    6.PNG
    Copy the encoded certificate like this sample including the 
    -----BEGIN CERTIFICATE-----
    -----END CERTIFICATE-----
    7.PNG
    Note: Save this using a notepad document using a .CER file type. You will need this for the Egnyte portion of the configuration.
  17. Select Save Changes.

 

Configuring Egnyte for Single Sign On

  1. Log in to the Egnyte Admin console, and navigate to the Configuration tab.
  2. Select Security & Authentication from the left menu. Scroll down to the Single Sign-on Authentication section. Select SAML 2.0 authentication, with CustomRedirect as the IdentityProvider. Fill out your SSO details for login URL and entity ID.
    Note: CustomRedirect has been replaces by Generic HTTP POST.
    egnySSO01.png
    Enter the information copied from Passly in the text boxes provided:
    Issuer URL:Issuer URL https://(Your On-Demand Tenant)/trust
    SSO Endpoint: SAML2.0 Endpoint (HTTP) URL https://(Your On-Demand Tenant)/signin
    SSO Logout Endpoint: SLO Endpoint (HTTP) URL https://(Your On-Demand Tenant)/apps
    Note: Replace https://(Your On-Demand Tenant) with your actual tenant URL
    Certificate: X.509 Certificate
  3. Paste the encoded certificate (without the BEGIN CERTIFICATE or END CERTIFICATE parts) into the Identity Provider Certificate field.
    Leave the Default user mapping as Email Address
  4. Save the settings.


Users in Egnyte must be manually enabled for SSO. To enable a user, complete the following steps. egnySSO02.png

  1. Go the the Users & Groups tab in Egnyte Admin console
  2. Select a User to view their details
  3. Select Profile from the left menu
  4. Change their Authentication to SSO
  5. Enter their AuthAnvil On Demand principal name as the IdP Username
  6. Save the settings.


To verify, have the user sign in. They should be redirected to AuthAnvil On Demand after entering their Egnyte username or email address, and begin the authentication process.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Contact us