Cisco Cisco Web Security Appliance S190 Guía Del Usuario
14-5
Cisco IronPort AsyncOS 7.1 for Web User Guide
OL-23207-01
Chapter 14 Controlling Access to SaaS Applications
Understanding How SaaS Access Control Works
Enabling SaaS Access Control
To enable SaaS Access Control, you must configure settings on both the Web
Security appliance and the SaaS application. It is very important that the settings
you configure on the appliance and SaaS application match each other
appropriately.
Security appliance and the SaaS application. It is very important that the settings
you configure on the appliance and SaaS application match each other
appropriately.
When enabling SaaS Access Control, it is easiest to keep open a connection to the
Web Security appliance and the SaaS application simultaneously. You will need
to go back and forth between both components and copy and paste information
between both.
Web Security appliance and the SaaS application simultaneously. You will need
to go back and forth between both components and copy and paste information
between both.
Note
For more information on configuring SaaS Access Control for particular SaaS
applications, contact your technical sales representative or search the cisco.com
website for additional information, such as white papers, knowledge base articles,
or video tutorials.
applications, contact your technical sales representative or search the cisco.com
website for additional information, such as white papers, knowledge base articles,
or video tutorials.
To use SaaS Access Control, follow these steps:
1.
.
2.
Configure the SaaS application for single sign-on. When configuring the
SaaS application, you must also upload the certificate used on the Security
Services > Identity Provider for SaaS page. For more information, see the
SaaS application documentation.
SaaS application, you must also upload the certificate used on the Security
Services > Identity Provider for SaaS page. For more information, see the
SaaS application documentation.
3.
Create one or more SaaS Application Authentication Policies for each
SaaS application. For more information, see
SaaS application. For more information, see
.
Understanding the Single Sign-On URL
After you configure the Web Security appliance as an identity provider and create
a SaaS Application Authentication Policy for the SaaS application, the appliance
creates a single sign-on URL (SSO URL).
a SaaS Application Authentication Policy for the SaaS application, the appliance
creates a single sign-on URL (SSO URL).
How administrators use this URL depends on the flow type: