Modify Existing IDP Application with Auth Hub identifier
search cancel

Modify Existing IDP Application with Auth Hub identifier

book

Article ID: 394977

calendar_today

Updated On: 04-22-2025

Products

VMware

Issue/Introduction

Azure AD, OKTA steps for SAML Application (Modify Existing Application with Auth Hub identifier)

Environment

Cloud Service Platform

Resolution

Before You Begin:

Brief details of information (URLs) required from the Service Provider (SP) to add in your existing SAML application will be shared by the Broadcom team via email. 

AuthHub Service Provider Information:

Assertion Consumer Service URL: This needs to be referred from email.
Service Provider Entity ID:  This needs to be referred from email.

Please use the exact url values received in the email which will be sent by the Broadcom team. Customers need to configure the above service provider information received over email as described in the steps below.

AZURE IDP


Detailed Steps on Azure AD to update the existing SAML application with  additional  SP  information

Note: Please don't replace the existing Assertion Consumer Service URL and Service Provider Entity ID in your SAML app used for SSO apps. That will be required to continue supporting SSO for your enterprise domain until the upgrade to the new Service Providers.

Step 1:

    1. Login to your Azure Portal and head over to the Microsoft Entra ID service, and on the left-hand side select Enterprise applications.
    2. Look for an existing Application used for Broadcom SSO.
    3. In the below example our existing Broadcom SSO SAML application is "Broadcom SSO app”




Step 2: 

    1. Click on the application and go to the "Single Sign On" on the left side options.
    2. At the top of the Basic SAML configuration section, click on the edit button.

Configure AuthHub service provider information:

Step 3: 

    1. Click "Add Identifier" and "Add Reply URL" and add one new entry for AuthHub Service Provider with the below values.

Service Provider Entity ID: Use the value received over email. 
Assertion Consumer Service URL: Use the value received over email. Save your configuration.


Note: Please don't delete the OLD Identifier and Reply URL


OKTA IDP


Detailed Steps on Okta to update the existing SAML application with  additional  SP  information.

Note: Please back up the existing Single Sign-On URL and Audience URI (SP Entity ID) from your SAML app for SSO apps. That will be required to continue supporting SSO for your enterprise domain if anything fails until the upgrade to the new Service Providers.

Step 1:

    1. Login to your Okta portal and on the left-hand side select Applications.
    2. Look for an existing Application used for Broadcom SSO.
    3. In the below example our existing Broadcom SSO SAML application is "fedcloud - prod- VIDB”

Step 2:

    1. Click on the application and go to the General tab.
    2. In the SAML Settings, click on the Edit button.

Configure AuthHub service provider information:

Step 3:

    1. On the General Settings tab, click Next. On the Configure SAML tab, update the “​​Single sign-on URL” and “Audience URI (SP Entity ID)” with the below values.

      Assertion Consumer Service URL: Use the value received over email.
      Service Provider Entity ID: Use the value received over email.




    2. Click on Next.
    3. Click on Finish to save the changes.
Powered by Wolken Software