The following article assists Identity Provider (IDP) Administrators with configuring single sign-on (SSO) for OneView with CA Technologies. OneView only supports the SAML 2.0 authentication protocol. For more information, see Configure single sign-on with OneView.
Add a new application in CA
- Click Add App.
- Click Create a SAML SSO app.
- Name the app > click Continue.
Setup CA Technologies SAML Settings
- On the OneView Single Sign-On page, copy Assertion Consumer Service URL.
- Paste the copied url into the Single sign on URL field in CA Technologies.
- On the OneView Single Sign-On page, copy the Service Provider Entity ID.
- Paste the copied url into the Audience URI (SP Entity ID) field in CA Technologies.
CA attribute mapping
- Configure the NameID attribute:
- Name: NameID
- Type: User Attribute
- Value: Primary Email
- Click Add Attribute.
- In the next line, configure the email attribute:
- Name: email
- Type: User Attribute
- Value: Primary Email
- Click Continue.
- Click Finish on the next page.
Link CA Technologies metadata with OneView
Use one of the following methods to connect the metadata with OneView
Metadata URL
- Copy the OneLogin App Federation Metadata Url.
- In the OneView Single Sign-On page, paste the Metadata URL under Identity Provider (IDP) Metadata.
- Set Enable Single Sign-On (SSO) to ON.
- In the top right, click Save.
Metadata XML
- Download the CA Technologies Federation Metadata XML file.
- In the OneView Single Sign-On page, choose Metadata XML.
- Drag the .xml file or click Or Select A File to upload the IDP Metadata.
- Set Enable Single Sign-On (SSO) to ON.
- In the top right, click Save.
Enable SSO
- Once the metadata is uploaded, toggle on Enable SSO.
- Toggle on Just-In-Time (JIT) Provisioning to automatically create OneView users if they don't already exist when authenticating through CA Technologies.
- Toggle on Service Provider Initiated SSO if you will be accessing OneView through a tile or button in CA Technologies.
- Now the application can be assigned to your OneView administrators in CA Technologies.