Steps to configure SAML SSO for ManageEngine Analytics Plus
About Analytics Plus
Analytics Plus is a comprehensive IT analytics software that consolidates data from various IT applications to provide actionable insights, facilitating strategic decision-making. Its AI capabilities enable users to gain contextual insights about problems and solutions plaguing their IT.
The following steps will help you enable single sign-on (SSO) for Analytics Plus from Identity360.
Prerequisites
- The MFA and SSO license for Identity360 is required to enable SSO for enterprise applications. For more information, refer to pricing details.
- Log in to Identity360 as an Admin or Super Admin.
- Navigate to Applications > Application Integration > Create New Application, and select Analytics Plus from the applications displayed.
Note: You can also find Analytics Plus from the search bar located at the top.
- Under the General Settings tab, enter the Application Name and Description.
- Under the Choose Capabilities tab, choose SSO and click Continue.
General Settings of SSO configuration for Analytics Plus
- Under Integration Settings, navigate to the Single Sign On tab, click Metadata Details.
- Copy the Login URL and Logout URL, which will be used during the configuration of Analytics Plus.
- Download the SSO certificate by clicking Download from the Signing Certificate field.
Integration Settings of SSO configuration for Analytics Plus configuration
Analytics Plus (service provider) configuration steps
- Log in to Analytics Plus with an admin's credentials.
- In the Analytics Plus portal, select the Settings icon in the top-right corner.
Portal view of Analytics Plus
- Select Third-party SSO under User Management.
Selection of SSO capability from Analytics Plus
- In the Third-party SSO page, click Add New.
Configuration of SAML SSO in Analytics Plus
- Enter Identity360 as the Name, and paste the Login URL and Logout URL values copied in step 6a of the prerequisites section in the Identity Provider Login URL and Identity Provider Logout URL fields, respectively.
Note: The Logout URL is optional and can be skipped if single logout (i.e., automatically log out from Identity360 when logging out from Analytics Plus) is not required.
- Upload the X.509 certificate file downloaded in step 6b of the prerequisites section in the Public Key field.
- Click Save.
SP configuration details
- The IDP details of Identity360 will now be displayed in a table along with the metadata. Click Download from the metadata file. These will be used in a later step.
Metadata file in Analytics Plus
Identity360 (identity provider) configuration steps
- Switch to Identity360's application configuration page.
- In the Upload Metadata field, upload the metadata file downloaded in step 8 of Analytics Plus configuration.
- Click Save.
Integration Settings of SSO configuration for Analytics Plus
- To learn how to assign users or groups to one or more applications, refer to this page.
Your users should now be able to sign in to Analytics Plus through the Identity360 portal.
Note: For Analytics Plus, both SP-initiated and IdP-initiated flows are supported.
Steps to enable MFA for Analytics Plus
Setting up MFA for Analytics Plus using Identity360 involves the following steps:
- Set up one or more authenticators for identity verification when users attempt to log in to Analytics Plus. Identity360 supports various authenticators, including Google Authenticator, Zoho OneAuth, and email-based verification codes. Click here for steps to set up the different authenticators.
- Integrate Analytics Plus with Identity360 by configuring SSO using the steps listed here.
- Now, activate MFA for Analytics Plus by following the steps mentioned here.
How does MFA for applications work in Identity360?
