Configure an IdP for the Cisco Catalyst SD-WAN Portal
When you log in to the Cisco Catalyst SD-WAN Portal for the first time, you have the option to configure the Cisco Catalyst SD-WAN Portal to use the identity provider (IdP) of your organization, such as Okta Identity Management.
 Note |
Configuring an IdP for the Cisco Catalyst SD-WAN Portal is optional. |
After you configure your IdP and roles (as described in Configure Cisco SD-WAN Self-Service Portal Roles for IdP Users, you can log in using your own IdP instead of your Cisco.com account credentials.
Note |
When you set up an IdP in the Cisco Catalyst SD-WAN Portal, the issuer, login URL, and privacy-enhanced mail (PEM) key are not available from the IdP of your organization. This information is available after you set up the Assertion Consumer Service (ACS) URL and audience in your organization's IdP. When setting up your organization's IdP, we recommend that you add placeholder values for the ACS URL and audience. Later, you can configure the IdP on the Cisco Catalyst SD-WAN Portal and update your organization's IdP with the correct value of the ACS URL and audience Uniform Resource Identifier (URI) that is editable in the Cisco Catalyst SD-WAN Portal. |
Before You Begin
Before you configure an IdP in Cisco Catalyst SD-WAN Portal, you should create the following variables on your organization's IdP. Cisco Catalyst SD-WAN Portal requires these variables for each user that logs in.
-
firstName
-
lastName
-
email
-
SSP_User_Role
For more information on roles, see Configure Cisco SD-WAN Self-Service Portal Roles for IdP Users.
Configure an IdP for the Cisco Catalyst SD-WAN Portal
-
Specify the following information for your IdP. You can find this information in your IdP.
-
Domain Name
-
IdP Issuer URL
-
IdP SSO URL
-
IdP Signature Certificate in .pem format.
-
-
Click Submit Request.
-
On your IdP site, confirm the IdP creation.
Feedback