search cancel

Azure AD Integration with Symantec MyVIP

book

Article ID: 151006

calendar_today

Updated On:

Products

VIP Service

Issue/Introduction

Steps to configure Azure AD Integration with Symantec MyVIP portal.

Environment

Symantec VIP Manager

Resolution

Integrating Azure AD with MyVIP NexGen login portal.

Configure Azure AD Integration with MyVIP NexGen Self Service Portal

  1. Login to the Azure Portal as a Global Administrator
  2. Click on 'Azure Active Directory'
  3. Click on 'Enterprise applications'
  4. Click on 'Create your own application'
  5. Select 'Integrate any other application you don't find in the gallery (Non-gallery)'
  6. Add the name “MyVIP” (or similar) as the app name, then click 'Create'. The Application view will be displayed

Setup SAML configurations for the “MyVIP” Enterprise Application

  1. In the application view, on the left panel, Click on Single Sign-on
  2. Select SAML as the Single Sign-on Method
  3. In a separate tab or browser window, download the metadata file from https://login.vip.symantec.com/viplogin/saml/metadata
  4. On the “Setup Single Sign-On with SAML” page, select 'Upload metadata file'. The Basic SAML Configuration section should populate. 
  5. Enter Relay State Value as https://login.vip.symantec.com/viplogin/home?successUrl=<organizations’s success url>?cancelUrl=< organizations’s cancel url >?errorUrl=< organizations’s error url>

Adding User Attributes to the SAML Configuration

  1. Click 'Edit' in the 'Attributes and Claims' Section
  2. Delete all the 'Additional claims'. Leave the predefined 'Unique User Identifier (Name ID)'
  3. Add an additional claim with 'Claim name' “EMAIL” mapped to user.userprincipalname
  4. Add an additional claim with 'Claim name' “PHONE” mapped to user.telephonenumber

Certificate Download and Azure AD Identifier

  1. Download the Base64 certificate from SAML Signing Certificate Section
  2. Copy the 'Azure AD Identifier' from “Set Up MyVIP” section and save it in a text editor
Users and Groups
  1. Click on 'Users and Groups' from the left-pane of the Application View.
  2. Add the Users/Groups in your organization that you would like to assign the MyVIP application.

Upload the Azure AD Identifier and certificate to VIP Manager
Complete the following steps in VIP Manager to add Azure AD Identifier ID and Azure AD certificate: 

  1. In VIP Manager, click the Account tab.
  2. Under the Account tab, select 'Single Sign-on'. 
  3. Click Edit next to IdP Service Settings.
  4. Enter the Azure AD Identifier URL that you saved earlier as the entity ID. 
  5. Click Browse to select the certificate that you saved earlier.
  6. Click Submit.