1. Home
  2. Docs
  3. PureAUTH SAML Integration...
  4. Xshield SAML Integration using PureAUTH

Xshield SAML Integration using PureAUTH

Introduction

This document explains how to configure and manage the Xshield SAML integration with the PureAUTH Identity Platform and make Xshield authentication Passwordless.

Integration with PureAUTH helps you enable the SSO and passwordless capability for Xshield users using the Security Assertion Markup Language (SAML) 2.0 authentication standard. 

Prerequisites

  • Admin user role in Xshield to activate the integration.   
  • PureAUTH Identity provider administrator access.

Setup Xshield application on PureAUTH

In this step we will add a new Xshield application on the N4cer portal. Please follow the steps given below:

  • Click on “Add Application”.
  • Select “Xshield” application.
  • Enter any application name.
  • Select “Primary (Corporate email)” in the dataset for the email field.
  • In the “SAML Response Endpoint (ACS URL)” field, enter the following URL for now (It will change according to SP Metadata).
https://your Domain/api/auth/callback-saml
  • In the “Audience (Entity ID)” field, enter the following URL for now (It will change according to SP Metadata).
https://your domain 
  • Click “Add Attribute
    • Attribute Name “user.userprincipalname
    • Attribute Value “Primary (Corporate Email)
  • Click “Add

Xshield SAML configuration

  1. Login to Endpoint Central console
  2. Go to Integration > SAML 2.0 > Activate
  1. Select configuration type “Pick from metadata
  2. Copy “Metadata Endpoint” from PureAUTH and paste under Client information.
  3. Add “user.userprincipalname” Under user attribute mapping.
  4. Copy “SAML Logout URL” from PureAUTH and Paste under Endpoints (Logout URL).
  5. Click Save

Test SAML Authentication

  1. Login to Xshield Endpoint.
  2. Enter your corporate Email address.
  3. Browser redirects you to the PureAUTH sign-in Page.

4. Open the AuthVR5 Authenticator application and Scan the QR using the swift login button.

Disable SAML Authentication

  1. Login to Xshield Endpoint as administrator.
  2. Go to Integration > SAML > Deactivate

Further Support

For further information or assistance, please contact PureID support team support@pureid.io.

Was this article helpful to you? No Yes

How can we help?