Enabling SAML Service Provider

You must configure the SAML in the Service Provider, that is AppScan Enterprise application, to allow user assertion by an Identity Provider (IdP) through Single Sign-On authentication service.

Before you begin

  • You must be an AppScan administrator to perform the SAML configuration.
  • You must have completed the following tasks:
    • You must have installed the AppScan Enterprise V10.0.3 or later on your system. For more information about installing AppScan Enterprise, see to Installing AppScan Enterprise.
    • You must have configured the Identity Provider (IdP) supported by your AppScan Enterprise version SP where you are enabling the SAML. For more information about configuring supported IdP, see Configuring Identity Providers for SAML in AppScan Enterprise.
      Note: AppScan Enterprise supports the IdP - Okta and PingFederate.

About this task

You must have installed the AppScan Enterprise software package on the target system before you configure the SAML service. This section helps you configure the SAML service by locating and renaming the SAML configuration property file that is available in the installation directory of the AppScan Enterprise application.

Procedure

  1. After the AppScan Enterprise application installation is complete, navigate to the config folder of the installation directory where AppScan Enterprise software is installed. For example: <installation directory>/AppScan Enterprise/Liberty/usr/servers/ase/config.
  2. Locate and open the onelogin.saml.properties.template file.
  3. Rename the file onelogin.saml.properties.template to onelogin.saml.properties.
    Note: If a different name is entered, then the SAML service is not enabled and configured for AppScan Enterprise.
  4. After renaming the SAML properties file, exit the installation directory.

Results

You have successfully configured SAML Service Provider.

What to do next

You can login to the AppScan Enterprise through the Identity Provider (IdP) that your organization has provided.
Note: When you log in to AppScan Enterprise through SAML-SSO method, the Scans tab is displayed as the default landing page instead of the Monitor tab.