Enabling SAML authentication

You can use Storage Manager to configure Security Assertion Markup Language (SAML) authentication so that remote users can log in by using a secure identity provider (IdP).

Before you begin

The IdP that you plan to use for remote authentication must be configured.
Note
See the documentation that is provided by the IdP that you have configured.
You must have the URI of the IdP.

About this task

The IdPs that have been validated with Storage Manager are Shibboleth and Active Directory Federation Services.

Note

After SAML authentication is enabled, only remote users can access the Storage Manager GUI. Local users cannot access the Storage Manager GUI after SAML authentication is enabled.

Click Configuration > Authentication .
Select the Enable SAML authentication check box.
Configure Storage Manager to use SAML authentication:
1. Enter the URI of the IdP.
2. Enter the IP address of the host system.
3. Optional: If required, change the host system certificate.
Click Retrieve Host Metadata to retrieve the host URI and host metadata information.
Copy the host URI or host metadata details, access your IdP, and then specify the host URI or host metadata details and the trust rules in the IdP window.
Note
See the documentation that is provided by the IdP that you have configured.
Click Save .
The IdP login window is displayed.
Log in to Storage Manager by using the IdP login window.
After the IdP is configured, if the user tries to log in by using the fully qualified domain name (FQDN), IPv6, or a cluster management LIF, then the system automatically changes the IP address to the IP address of the host system that was specified during the IdP configuration.

Give documentation feedback