Help Center
News
Indusface
Help Center
News
Indusface
AppTrana
Indusface WAS
Onboard into Indusface WASSAML Integration with Entra ID for Single Sign-On - Indusface WAS
Summary
Dashboard
Malware Monitoring
Application Audit
Vulnerability Assessment
API Security Audit
Asset Monitoring
Reports
Vulnerabilities
Settings
Additional Resources
Zero-Day Vulnerability Reports
Security Bulletins
AppTrana API Integration
Release Notes

SAML Integration with Entra ID for Single Sign-On - Indusface WAS

Introduction 

This document describes the configurations required to access the WAS portal via Entra ID (formerly known as Azure Active Directory) by connecting through SAML settings.

By configuring SAML-based SSO (Single Sign-On) with Entra ID, you enable your users to access the WAS portal using their Entra ID credentials. This removes the need for separate passwords for different applications. Users will only need one account to log in to the WAS portal.

Required Inputs from Entra ID

You will need the following items from Entra ID to configure SAML in Indusface WAS. The steps below explain how to obtain these from Entra ID:

  • Certificate (Base64)
  • Login URL
  • Logout URL

Steps to configure SAML

Create a New Application

Only the admin has access.

  1. Sign into your Microsoft Entra ID portal as an admin. 
  2. Under Entra ID services, click on the Microsoft Entra ID button (or) search for Active Directory using the search bar at the top. 
  3. In the left navigation menu, click Enterprise applications under the Manage section.
  4. Select All Applications > New Application > Create your own application

Add Application Name

5. Enter a name for your application under: What's the name of your app? 

6. Select Integrate any other application you don't find in the gallery, then click Create.

7. Once created, you will be redirected to the application’s page.

Configure WAS Details in Entra ID for SSO 

  1. Navigate to Set up single sign-on in your application’s page.
  2. Click Get Started as shown in the corresponding screenshot.

3. Choose the SSO method from the available options. 

4. Select the SAML option as suggested in the below screenshot

5. In the Basic SAML Configuration, click Edit to update the requested URLs:

  • Identifier (Entity ID): Enter the Audience URI (SP Entity ID) you obtained from the WAS portal’s SSO configuration, for example https://sso.apptrana.com/saml/metadata.
  • Reply URL: Enter the Single Sign-On URL from the WAS portal’s SSO configuration, for example https://sso.apptrana.com/saml/SSO.

6.  After entering these values, click Save and continue.

Add Attributes

1. Click Edit in the Attributes & Claims section.

2. Click Add new claim.

3. Add the attribute details obtained from the WAS portal’s SSO configuration:

  • Nameuse.was_username
  • Source attributeuse.was_username

4. Click Save once completed.

Assign User/Group to the Application

  1. Select the application you created.
  2. Navigate to the Users and Groups section.
  3. Click Add user/group.
  4. Select and add the users or groups who need access to the application.
  5. Click Save. After saving, the Entra ID configuration for SSO is complete.

Download the SSO Application Certificates from Entra ID

Now, as your app is configured, you need to navigate to the Single sign-on application again that you created recently.

  1. Open the Single Sign-On configuration page for your application.
  2. Scroll to the SAML Certificates section.
  3. Download both the Certificate (Base64) and the Federation Metadata XML.
  4. Save these files in an easily accessible location.

 

Configure Entra ID Details in WAS Portal

  1.  Navigate to the SSO configuration section under Settings in the WAS portal.
  2. Upload the XML file and Certificate (Base64) you downloaded in the previous step.
  3. Allow up to 24 hours for the WAS portal to process the uploaded files.
  4. After processing is complete, the WAS portal will be accessible using your Entra ID account.

 

Was this helpful?

Powered by Product Fruits