Reset Search
 

 

Article

How to enable Single Sign On (SSO) on ExtremCloud IQ (XIQ) public cloud

« Go Back

Information

 
TitleHow to enable Single Sign On (SSO) on ExtremCloud IQ (XIQ) public cloud
Objective
The article describes process about how to enable Single Sign On (SSO) on the customer's VIQ on ExtremCloud IQ (XIQ) public cloud.
Environment
  • ExtremeCloud IQ
  • Public Cloud
Procedure
1. Customer creates the admin accounts that will use SSO on XIQ
Global Settings > Account Management
2. Customer prepares the federated metadata file after having the Federated services configured in the environment
3. Customer raises a support case and provide the federated metadata file and VIQ ID
4. Support engineer submits an internal ticket with the metadata and VID ID to work with the CloudOps team 
5. After the SSO is enabled for the customer's VIQ on Extreme side by CloudOps, support engineer updates the customer and provides the metadata from Extreme
6. Customer configures the application with the following settings on the federate system and import the metadata from Extreme
  • Identifier (Entity ID): sso-va:aerohive:prod
  • SSO URL / Reply URL (Assertion Consumer Service URL): https://sso-va.aerohive.com:443/sp/ACS.saml2
  • Relay state: https://cloud.aerohive.com/sso
NOTE: 
  1. Customer needs to ensure the service is setup for IDP-initiated SSO only because SP-initiated SSO is not supported by XIQ. 
  2. In the step 6, leave "Sign on URL" empty when configuring Single sign-on in Azure AD
Additional notes

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255