Configure the SAML 2.0 Integration for Duo - Administrator Guide - 6.6 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide

Product
Cortex XSOAR
Version
6.6
Creation date
2022-09-29
Last date published
2024-03-21
End_of_Life
EoL
Category
Administrator Guide
Abstract

Configure an instance of SAML 2.0 integration for Duo in Cortex XSOAR.

You need to configure the SAML 2.0 integration to use it in Cortex XSOAR.

Before you start, access the Duo metadata for the application. You will need these parameters for configuring the SAML 2.0 integration.

  1. In Cortex XSOAR, go to SettingsIntegrationsInstances.

  2. Search for SAML 2.0.

  3. Click Add instance to configure a new integration.

  4. Enter https://<cortexxsoarURL>/saml in the Service Provider Entity ID field.

  5. Copy the Metadata URL from your application defined in Duo to the IdP metadata URL field in Cortex XSOAR.

  6. Copy the Single Sign-On URL from your application defined in Duo to the IdP SSO URL field in Cortex XSOAR.

  7. Download the public certificate from Duo and copy the contents of the file into the IdP public certificate field in Cortex XSOAR.

    duo-download-certificate.png
  8. Enter your IdP private key (pem format). If you do not have a private key, create a self signed certificate, using Steps 1 - 2.

  9. Leave Use system proxy settings selected and select Compress encode URL (ADFS).

    duo-compress-encode.png
  10. Enter your URL https://<cortexxsoarURL> for the Service Identifier (ADFS) field. This field must match the Entity ID in Duo.

  11. Copy the Single Log-Out URL from your application defined in Duo to the IdP Single Logout URL field in Cortex XSOAR.

  12. Enter https://<cortexxsoarURL>/saml-logout in the Single Logout Service Endpoint field.

  13. Click Test to validate.

  14. Map Duo Groups to Cortex XSOAR Roles.