Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Manage Identity Providers

Identity providers (IdP) enable the use of third-party credentials, such as the credentials of your Google or Facebook account, to log in into Juniper Mist Routing Assurance.

Table 1 lists the parameters to add identity providers to an organization.

Table 1: Parameters to Add Identity Providers
Field Description
Name

Enter a name for the identity provider.

Type Displays the type of identity provider.

The default identity provider is SAML and cannot be modified.

Issuer Enter the unique URL that identifies your SAML identity provider. For example, Google and Microsoft.
Name ID Format Select the unique identifier for the user. The options are e-mail and unspecified. If you select e-mail, the identity provider uses your e-mail address to authenticate you. If you select unspecified, the identity provider generates a unique identifier to authenticate you.
Signing Algorithm Select a signing algorithm from the following:
  • SHA1

  • SHA256 (default)

  • SHA384

  • SHA512

Certificate Enter the certificate issued by the SAML identity provider.
SSO URL Enter the URL to redirect the users to the SAML identity provider for authentication. For example, https://www.google.com.
Custom Logout URL Enter the URL to redirect the users after logging out. For example, https://www.juniper.net.
ACS URL The URL that the identity provider should redirect an authenticated user to after signing in. The value is auto-generated and not editable.
Single Logout URL The URL that the identity provider should redirect when a user logs out of an authentication session. The value is auto-generated and not editable.

Add an Identity Provider

To add an identity provider:
  1. Click Organization > Settings in the navigation menu.
    The Organization Settings page appears.
  2. Click the Add IDP icon above the Identity Providers table.
    The Create Identity Provider page appears.
  3. Configure the identity provider by using the guidelines in Table 1.
  4. Click Save.
    The identity provider is created and listed in the Identity Providers table.
    Note:

    If you configure IdP, the roles assigned in IdP takes precedence over the roles assigned from the Administrators page.

Edit an Identity Provider

To edit an identity provider:
  1. Click Organization > Settings in the navigation menu.
    The Organization Settings page appears.
  2. Click the identity provider you want to edit in the Identity Providers table.
    The Edit Identity Provider page appears.
  3. Edit the identity provider by using the guidelines in Table 1.
    Note:

    You cannot edit identity provider type, ACS URL, and Single Logout URL.

  4. Click Save.
    You are returned to the Organization Settings page, where you can view the changes in Identity Providers table.

Delete an Identity Provider

After you delete an identity provider, a user can log in only by using their Juniper Mist Routing Assurance account.

To delete an identity provider:
  1. Click Organization > Settings in the navigation menu.
    The Organization Settings page appears.
  2. Click the identity provider that you want to delete.
    The Edit Identity Provider page appears.
  3. Click Delete.
    You are returned to the Organization Settings page, where you can view that the identity provider is removed from the Identity Provider table.