Configuring SAML SSO and RBAC for Arctera Archiving Users via IDPs

book

Article ID: 100073700

calendar_today

Updated On:

Description

Description

Implementing SAML Single Sign-On (SSO) with Role-Based Access Control (RBAC) ensures secure and seamless authentication for Arctera Archiving users via an Identity Provider (IDP) such as Okta and Entra ID. This setup allows users to access Arctera Archiving applications without managing multiple credentials while ensuring appropriate access permissions. 

SAML SSO is an authentication standard that enables users to log in once and gain access to multiple applications securely. It includes the following components: 

  • IDPs such as Okta, Entra ID, etc to verify user identity. 
  • Service Provider (SP) such as Arctera Archiving Management Console, Arctera eDiscovery, Arctera Personal Archive, etc to which SSO access is needed.  
  • SAML authentication token to establish a trusted connection between IDP and Arctera Archiving applications.

Role-Based Access Control (RBAC) ensures that users logging into Arctera Archiving via SSO are automatically granted the correct permissions based on their roles. It includes: 

  • Defining user roles (e.g. AccountManager, RoleManager, etc) in IDP. 
  • Mapping SAML attributes.
  • Assigning access control.

How does it work?

  1. Arctera Archiving user attempts to log in. The request gets redirected to IDP (e.g. Okta, Entra ID).
  2. IDP authenticates the user. Issues the SAML Assertion with role attributes. 
  3. Arctera Archiving application processes assertion. Grants access based on user roles.
  4. RBAC ensures correct permissions. The user receives access only to the functions their role allows. 

Objective:  

  • Seamless authentication without requiring multiple passwords. 
  • Automated permission assignment, reducing manual intervention. 
  • Centralized security control, improving governance and compliance. 

To configure SAML SSO and RBAC for Arctera Archiving Users via IDPs, refer to the following articles:

 

Issue/Introduction

Configuring SAML SSO and RBAC for Arctera Archiving Users via IDPs

Powered by Wolken Software