Below are the tasks to enable the Zscaler service to use SAML for provisioning and authenticating users. Click to learn more about each task:
Before you configure the Zscaler service to use SAML for provisioning and authentication, ensure that you do the following:
Click below for configuration examples that provide instructions for adding the Zscaler service to an IdP.
Complete the steps below to configure the service to use SAML for provisioning and authentication. The steps below explain how to download the Zscaler certificate, which you can upload to your IdP.
For example, for ADFS, you can obtain it from the line:
SingleSignOnService Binding=....HTTP-POST* Location="https://10.10.10.1/adfs/ls/")
For OneLogin, you can copy it from the SAML Endpoints URL field referenced in step 5 of Adding the Zscaler Service as an Application in Configuration Example: OneLogin.
For background information on using SAML, see About SAML.
For help with troubleshooting SAML, see SAML Troubleshooting Guidelines.