Manage User Authentication Profiles

Cisco Secure Access uses the Security Assertion Markup Language (SAML) to authenticate secure internet connections to the Secure Access Secure Web Gateway (SWG) from user devices on networks and network tunnels.

Secure Access also requires the integration with a SAML identity provider (IdP) for user connections with Secure Access Zero Trust Access (ZTA) to private destinations.

To support SAML authentication and authorization, you must configure the integration of an SAML identity provider (IdP) in Secure Access. For more information, see Configure Integrations with SAML Identity Providers.

Table of Contents

• About Configuring Multiple Cloud Provisioning IdPs
• Add User Authentication Profiles
• About Single Sign-On
• View User Authentication Integrations
• Edit a User Authentication Integration
• Delete a User Authentication Integration

About Configuring Multiple Cloud Provisioning IdPs

Set up SSO authentication for secure internet and zero trust connections to Secure Access. Add user authentications by configuring SAML IdPs in Secure Access.

For each SAML IdP integration, add a configured provisioning profile for a cloud IdP.

Note: You can only add one unique provisioning IdP in the configuration of a user authentication profile.

Add User Authentication Profiles

• Add User Authentication Profiles.

About Single Sign-On

• About Single Sign-On for Users.

View User Authentication Profiles

After you add a user authentication profile in Secure Access, you can view the list of user authentication profiles for the organization. For more information, see View User Authentication Profiles.

Edit a User Authentication Profile

• Edit a User Authentication Profile.

Delete a User Authentication Profile

• Delete a User Authentication Profile.

Multiple AD Domains with Secure Access Sites > Manage User Authentication Profiles < Add User Authentication Profiles