Uploading proxy metadata

Ivanti Access generates proxy metadata by combining the cloud service provider (SP) or the identity provider (IdP) metadata and the signing certificate. The proxy meta data is automatically generated when you configure the SP and IdP in the Ivanti Access administrative portal.

You upload the proxy meta data to the SP and the IdP. When you upload the proxy meta data to the (SP) and the (IdP), you establish a three-way trust between the SP, IdP, and Access. All authentication traffic now goes through Access.

Before you begin 

If your deployment is Ivanti Access + Standalone Sentry:

Ensure that a Standalone Sentry is registered on the Ivanti Access administrative portal.

The Standalone Sentry is assigned to the profile.

The profile with configured federated pair is published to Standalone Sentry.

Procedure 

1. Get the proxy metadata from the Ivanti Access administrative portal:

Go to Profile > Federated Pairs.

Expand the row for the federated pair.

For the Access service provider proxy metadata, click the Download link adjacent to Access(SP) Metadata.

You will upload the Access(SP) Metadata file to the identity provider (IdP).

For the Access identity provider proxy metadata, click the Download link adjacent to Access(IDP) Metadata

You will upload the Access(IDP) Metadata file to the cloud service provider (SP).

2. Upload the proxy metadata to cloud service provider (SP).
3. Upload the proxy metadata to identity provider (IdP).

For instructions on uploading the IdP proxy metadata to an SP, see the Knowledge Base article.

For instructions on uploading the SP proxy metadata to an IdP, see the Knowledge Base article.