Cisco Cisco Web Security Appliance S690 User Guide
7-4
AsyncOS 9.0 for Cisco Web Security Appliances User Guide
Chapter 7 SaaS Access Control
Using SaaS Access Control and Multiple Appliances
Using SaaS Access Control and Multiple Appliances
Before you begin
•
Configure the Appliance as an Identity Provider, page 15-2
Step 1
Configure the same Identity Provider Domain Name for each Web Security appliance.
Step 2
Configure the same Identity Provider Entity ID for each Web Security appliance.
Step 3
Upload the same certificate and private key to each appliance on the Network > Identity Provider for
SaaS page.
SaaS page.
Step 4
Upload this certificate to each SaaS application you configure.
Creating SaaS Application Authentication Policies
Before you begin
•
Create associated identities.
•
Configure Identity Provider, see
•
Provide an Identity Provider Signing Certificate and Key: Network > Identity Provider for SaaS >
Enable and Edit Settings.
Enable and Edit Settings.
•
Create an Authentication Realm,
Step 1
Choose Web Security Manager > SaaS Policies.
Step 2
Click Add Application.
Step 3
Configure the settings:
Property
Description
Application Name
Enter a name to identify the SaaS application for this policy; each application
name must be unique. The Web Security appliance uses the application name to
generate a single sign-on URL.
name must be unique. The Web Security appliance uses the application name to
generate a single sign-on URL.
Description
(Optional) Enter a description for this SaaS policy.