Create an Identity Profile

Use the following procedure to create an Identity profile:

Procedure

Step 1

In the Security Cloud Control platform menu, choose Products > Multicloud Defense .

Step 2

Navigate to Policies > Profiles > Identity.

Step 3

Click Create.

Step 4

Provide a unique Name.

Step 5

(Optional) Enter a Description. This may help differenatiate between other profiles with similar names.

Step 6

Use the drop-down menu to select your Provider type:

  • AFDS - Active Directory Federation Services (AFDS) is a service provided by Microsoft that allows for single sign-on (SSO) and identity federation across different applications and systems; selecting this configures the system to use AFDS for handling authentication and identity management tasks.

  • OKTA - Selecting OKTA as your provider implies organizations can streamline identity management processes and enhance security. This is an ideal cloud-based configuration point for environments that require scalability and stringent security requirements.

Step 7

Enter a valid IDP Redirect URL.

Step 8

Enter a vlid SAML Portal URL.

Step 9

Copy and paste your SAML Certificate into the text field provided.

Step 10

Manually enter the following User Attributes in SAML Message configuration:

  • Attribute Display Name.

  • Attribute Group Name.

  • Attribute Department Name.

  • Attribute Email.

Step 11

(Okta only) The Okta API access management is Okta's identity management platform that provides secure and centralized management of API access and authorization. Manually enter the following configuation:

  • API Endpoint.

  • API Key Name.

  • API Key.

Step 12

Click Save.

What to do next

Attach the profile to a policy rule set. See Rule Sets and Rule Set Groups for more information.