How to enroll NetBackup master server as a service provider to Okta

Article: 100047745
Last Published: 2020-05-22
Ratings: 1 0
Product(s): NetBackup

Description

To enroll NetBackup master server as a service provider to Okta

  1. Sign in to the Okta Administrator console with administrator privileges.
     
  2. Under the Applications menu, click Applications.
     
  3. Click Create New App to start the Application Integration Wizard.
     
  4. Select Web as the platform for your app.
     
  5. Select SAML 2.0 as the Sign on method, and click Create.


     
  6. Enter a name for the app, for example, Veritas Master Server.
     
  7. Enter the Single sign on URL and Audience URI (SP Entity ID) as
    1. https://<masterserver>/netbackup/sso/callback/SAML2Client.
       
  8. Under Attribute Statements (OPTIONAL), add the name and value of the Active Directory attributes that you want to provide to the Okta application.
    1. Define SAML attributes (Value field) that map to the userPrincipalName and the memberOf attributes in the AD or LDAP directory (Name field).


      Note: While adding the IDP configuration to the NetBackup master server, the values entered for the user (-u) and user group (-g) options must match the SAML attribute names (Value field) that are mapped to the userPrincipalName and the memberOfattributes in the AD or LDAP (Name field).

      Attribute mappings are used to map SAML attributes in the SSO with its corresponding attributes in the AD or LDAP directory. The SSO attribute mappings are used for generating SAML responses, which are sent to the NetBackup master server.
       
  9. On the Feedback page, select Help Okta Support understand how you configured this application.
     
  10. Select the I'm an Okta customer adding an internal app option and click Finish.
     
  11. On the Applications detail page, download the IDP metadata XML, which is required while configuring the IDP on the NetBackup master server.
     
  12. On the Assignments tab, click Assign and select Assign to People or Assign to Groups. Define the Access Control Policy by selecting the user groups based on the requirement of your organization.


     
  13.  Select the user and assign the required Access Control Policies
     
  14. Click Done.

Was this content helpful?