Overview
This article provides the steps to configure SSO for CloudRanger (DCP) using Azure as IdP.
π Note
βCloudRanger only supports service provider initiated SSO from the management console. IDP-based SSO directly from Azure is not supported.
The configuration is performed in the following order:
Configure the CloudRanger SSO application on Azure.
Contact Druva Support to get the SSO configuration setup in CloudRanger.
Update the CloudRanger SSO application on Azure with the correct Assertion Consumer Service URL and Entity ID.
Procedure
Step 1: Configure the CloudRanger SSO application on Azure
Open Enterprise applications and click New application.
βSelect Non-gallery application.
βName the Application as CloudRanger SSO and click Next.
βOnce your application is created, go to the Single sign-on section and select SAML.
βEdit the Basic SAML Configuration and add the following values and then save.
Entity ID: urn:auth0:cloudranger:xyzSSO
Assertion Consumer Service URL:
https://cloudranger.auth0.com/login/...nection=xyzSSO
6. Edit User Attributes & Claims and use the following claims:
7. Under SAML Signing Certificate, download the Certificate(Base 64) and save it.
8. Under Set up CloudRanger SSO, copy the Login URL and Logout URL and save them in a notepad.
β
Step 2: Contact Druva Support to get the SSO configuration setup in CloudRanger
Contact Druva Support and provide the below information so that the configuration can be completed in CloudRanger backend.
Login URL
Logout URL
Base 64 certificate
The email domain(s) that your users will be logging in with, such as "example.com"
2. Druva Support will provide you the correct values for the following parameters once SSO has been configured in the backend.
Entity ID
Assertion Consumer Service URL