Configure an identity provider for the Cisco Catalyst SD-WAN Portal
When you log in to the Cisco Catalyst SD-WAN Portal for the first time, you have the option to configure the Cisco Catalyst SD-WAN Portal to use the identity provider (IdP) of your organization, such as Okta Identity Management.
 Note |
Configuring an IdP for the Cisco Catalyst SD-WAN Portal is optional. |
After you configure your IdP and assign roles, you can log in using your organization's IdP instead of your account credentials on Cisco.com. For details on role configuration, refer to Configure Cisco Catalyst SD-WAN Portal Roles for IdP Users.
Note |
When you set up an IdP in the Cisco Catalyst SD-WAN Portal, the issuer, login URL, and privacy-enhanced mail (PEM) key are not available from the IdP of your organization. This information is available after you set up the Assertion Consumer Service (ACS) URL and audience in your organization's IdP. When setting up your organization's IdP, we recommend that you add placeholder values for the ACS URL and audience. Later, you can configure the IdP on the Cisco Catalyst SD-WAN Portal and update your organization's IdP with the correct value of the ACS URL and audience Uniform Resource Identifier (URI) that is editable in the Cisco Catalyst SD-WAN Portal. |
Before you begin
Before you configure an IdP in Cisco Catalyst SD-WAN Portal, create these variables on your organization's IdP. These variables are required for each user who logs in.
-
firstName -
lastName -
email -
SSP_User_Role
For more information on roles, refer to Configure Cisco Catalyst SD-WAN Portal Roles for IdP Users.
Configure an IdP for the Cisco Catalyst SD-WAN Portal
-
Specify the following information for your IdP.
-
Domain Name
-
IdP Issuer URL
-
IdP SSO URL
-
IdP Signature Certificate in PEM format
-
-
In federal environments only, check the I acknowledge that this is a Federal IDP check box.
-
To submit your IdP details, click Submit Request.
-
On your IdP site, confirm the IdP creation.
Feedback