SAML integration

Starting from V9.5.5, BigFix supports SAML V2.0 authentication via LDAP-backed SAML identity providers for the Web Reports and the Web UI components.

This support can be used to enforce two-factors authentication for BigFix with Common Access Cards (CAC), Personal Identity Verification (PIV) cards, or other factors. This configuration uses a web based Single Sign-On authentication method from the identity provider login URL. Logged on users are automatically redirected to the components supporting SAML V2.0 authentication without the need to log in again.

Be aware that, if you implement this configuration, LDAP operators must login from the identity provider login URL and not from the usual Web Reports and Web UI login pages. Access to the BigFix Console is not affected by this enhancement.

For more information about SAML V2.0 authentication support, see Enabling SAML V2.0 authentication for LDAP operators and https://bigfix-wiki.hcltechsw.com/wikis/home?lang=en-us#!/wiki/BigFix%20Wiki/page/SAML%20V2.0%20Authentication%20Support.