This guide explains how to integrate Assertiv with SailPoint IdentityNow (IDN) using SAML. When this set up is complete, users will be able to log into IDN using their Assertiv account.
Note: The screenshots used are for demonstrative purposes only and are accurate at time of writing. These screens can change over time. Please let us know if this document no longer reflects the application.
Create IdentityNow app in Assertiv
Log into your Assertiv Organization (https://<your-org>.assertiv.com) as an Admin user and select the App Config dashboard tile.
Select the plus () button to create a new App config.
Search for the SailPoint IdentityNow application and select the SailPoint icon.
You will be prompted for some information on the following page.
Application Name: The name entered here will be used when displaying this app to end users from their Applications page and in administrative app configuration pages.
Signing Certificate: The certificate is used to create a trust between Assertiv and your IDN account. For advanced users, if you have created a certificate you wish to use, select it here. Otherwise (or if you are unsure) you can select "-- Generate New Signing Certificate --".
Save the configuration. When the save completes, you will be taken to the Edit Service page.
Open your IdentityNow application and log in as an Administrative user.
Navigate to the Service Provider settings page (Admin > Global > Security Settings > Service Provider)
At the bottom of this IdentityNow page will be some Hosted Service Provider settings, copy these to their respective fields in Assertiv
In the next section, the Identity Provider Settings information is available for you to copy from Assertiv to IdentityNow.
From Assertiv, download the Public Signing Certificate and import it into IdentityNow.
Use the following settings in IdentityNow to complete your configuration:
Enable your Remote Identity Provider, and optionally check the Bypass Identity Provider setting to allow users to choose whether to log into IdentityNow via Assertiv or using a Username/Password.
Save your Assertiv configuration.
Configure Roles
In order for your users to access your application from their Assertiv apps page, you must set up a role, assign users to the role, and give that role permission to access the application. This is required for testing the integration as well.
More details on roles can be found in the following articles
Save IdentityNow configuration
When your Assertiv application and role(s) are successfully set up, you can now save the IdentityNow configuration and test.