How can I provision users from our own single sign-on service to OPSWAT Central Management?

OPSWAT Central Management includes the option to integrate with your third-party single sign-on service (SSO). This enables the seamless provisioning of new manager-users to your account.

When a user logs into the OPSWAT Central Management Console via your SSO service, OPSWAT Central Management will provision that user as a read-only user on your account, but this role and its associated limitations can be updated as you see fit.

To begin the integration process, navigate to your identity provider’s (IdP’s) website and follow their instructions for configuring an SSO application. In this case, the SSO application is being configured for OPSWAT Central Management.

To integrate OPSWAT Central Management with your own SSO service

1. Log into the OPSWAT Central Management Console with administrator permissions.
2. Navigate to Settings>Integrations>Single Sign-On, then select the Enable Single Sign On checkbox.

3. For your own reference purposes, enter an IdP Name in the field provided.
4. Click the Choose File button to upload the IdP X.509 certificate .pem file, downloaded/received from your IdP.
5. Enter the Issuer information that you received from your IdP in the relevant field.
6. Enter the Idp SSO URL that you received from your IdP in the relevant field.
7. Enter the IdP Logout URL and Error URL, if any, that you received from your IdP in the relevant field.
8. Click the Save button to implement your changes.
9. Following this implementation, OPSWAT Central Management will issue an OPSWAT Central Management Login URL that you must copy and use to update the Postback SSO URL (also known as the Assertion Consumer Service URL) of the SSO application for OPSWAT Central Management that you configured via your IdP.