![]() In the Service Provider Entity ID text box, paste the Service Provider Entity ID value you copied from Malwarebytes Nebula.From the Application Type(Integration Guide) drop-down list, select Others.On the SAML page, in the Name text box, type a name for this resource.From the Type drop-down list, select SAML.From the navigation menu, select Resources.for the Malwarebytes Nebula resource to determine which users can authenticate and log in to Malwarebytes Nebula and which authentication methods they can use (Push, QR code, and OTP). You must also create an authentication policy Authentication policies specify which resources users can authenticate to and which authentication methods they can use (Push, QR code, and OTP). Configure AuthPointīefore AuthPoint can receive authentication requests from Malwarebytes Nebula, you must add a SAML resource In AuthPoint, resources are the applications and services that your users connect to. The email address for each Malwarebytes user account must match the email address of the AuthPoint user account. If you enabled Just-In-Time(JIT) Provisioning, Malwarebytes Nebula automatically creates a user account when a new user logs in for the first time. ![]() In our example, we invite a user called Tester_SAML. Only administrator or super admin is able to invite new console users. Send invites to your users in Malwarebytes Nebula. You need these values when you configure AuthPoint. Scroll down and copy the Service Provider Entity ID and Assertion Consumer Service URL values.(Optional) To allow Malwarebytes Nebula to automatically create a user account when a new user logs in for the first time, enable the Just-In-Time(JIT) Provisioning toggle.Enable the Service Provider Initiated SSO toggle.In the Warning dialog that appears, click Yes to disable the 2 Factor Authentication.Enable the Enable Single Sign-On(SSO) toggle.On the Single Sign-On page, drag and drop the metadata file or click Choose a Different File to upload the metadata file you downloaded in Step 5.In the navigation bar, select Settings > single Sign-On.Log in to your Malwarebytes cloud console as a super admin.The AuthPoint metadata provides your resource, in this case Malwarebytes Nebula, with information necessary to identify AuthPoint as a trusted identity provider. If you do not have a certificate, or if all of your certificates have expired, click Add Certificate and use the newly created certificate. We recommend that you choose the certificate with the latest expiration date. Next to the AuthPoint certificate that you want to associate with your resource, click and select Download Metadata.If you have a Service Provider account, you must select an account from Account Manager. From the navigation menu, select Configure > AuthPoint.After you have the metadata file, you can configure Malwarebytes Nebula. To start, you must download the metadata file from the Certificate Management page in the AuthPoint management UI. SAML Configuration in Malwarebytes Nebula (go to Certificate Management)Ĭomplete the steps in this section to configure Malwarebytes Nebula. You have an AuthPoint identity provider (IdP) certificate An AuthPoint IdP certificate is required for SAML authentication.Your environment meets the minimum operating system and external access requirements (see the Malwarebytes Nebula platform Administrator Guide for more information).You can log in to Malwarebytes Nebula as a super admin.This diagram shows the data flow of an MFA transaction for Malwarebytes Nebula.īefore you begin these procedures, make sure that: Malwarebytes Nebula Authentication Data Flow with AuthPointĪuthPoint communicates with various cloud-based services and service providers with the SAML protocol. Malwarebytes Nebula must already be configured and deployed before you set up MFA with AuthPoint. This document describes how to set up multi-factor authentication (MFA) for Malwarebytes Nebula with AuthPoint as an identity provider. Malwarebytes Nebula Integration with AuthPoint Deployment Overview
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |