Federation and Single Sign-on for Threatpulse Portal

book

Article ID: 220578

calendar_today

Updated On:

Products

Web Security Service - WSS

Issue/Introduction

Symantec uses Okta for both Single Sign-on (SSO) and federation of user accounts. Okta is an identity provider (IdP) that offers user authentication as a service.

Web Security Service customers can choose to register with Okta using any email address or to federate their corporate IdP with Okta.

Environment

  • Web Security Service
  • Okta
  • Any 3rd party IdP (Supports SAML 2.0)

Resolution

Configuring federation with a partner IdP:

Federation with a partner IdP must be initiated by opening a support ticket. When you raise a support ticket to request federation, you must provide:

  • The email domain for your users
  • An XML fragment containing metadata about your IdP that the IdP provides.
  • The XML must include the attribute mappings for the standard attributes within Broadcom’s IdP:
    • FirstName
    • LastName
    • Email address
    • PartnerUserId: the unique user ID in the federated IdP

Caveats 

  • The WSS portal can only be federated with a single domain per WSS Subscription ID.
  • Enforcing federation automatically enables federation among all Symantec Cloud products portals and services.

Product Name

Product Portal Link

Symantec Endpoint Protection Cloud & 

Symantec Endpoint Security

https://sep.securitycloud.symantec.com/app/#/landing

Symantec Partner Management Console

https://manage.symanteccloud.com/

Symantec Cloud Workload Protection

https://scwp.securitycloud.symantec.com/webportal/

Symantec Web Security Service

https://portal.threatpulse.com/login.jsp

Email Security.cloud &

Web Security.cloud

https://identity.symanteccloud.com/Logon

Symantec CloudSOC CASB - EMEA

https://app.eu.elastica.net/

Symantec CloudSOC CASB - NAM

https://app.elastica.net/