Upload AD FS metadata to ETP IdP

Before you begin

See Set up Active Directory Federation Services (AD FS) as a third-party SAML identity provider.

Upload the IdP metadata from your organization's AD FS domain to the ETP identity provider (IdP) you created.

How to

  1. Go to your organization's AD FS domain and download the IdP metadata XML file. For example, https://<yourdomain.com>/FederationMetadata/2007-06/FederationMetadata.xml
  2. Return to ETP and open the IdP you created for AD FS.
    1. In the ETP navigation menu, select Identity > Identity Providers.
      Note: If you are trying the new Enterprise Center interface, in the navigation menu, select Identity & Users > Identity Providers.
    2. Click the name of the IdP you created for AD FS.
  3. Go to the Authentication section and complete these steps:
    1. Click Choose file next to Upload IDP metadata file.
    2. Browse to the location of the file on your machine.
    3. Click Open.
    4. Click Save.

Next steps

  1. Deploy the IdP configuration:
    • If you are trying the new Enterprise Center interface, in the identity provider configuration, you can click the icon next to the Ready for Deployment status. A deployment icon also appears next to a failed deployment status in case you need to deploy the identity provider again. This action starts the deployment process.
    • Deploy identity provider configuration changes in the list of Pending Changes. For more information, see Deploy configuration changes.
  2. Associate the identity provider with a policy that’s enabled for authentication. For more information, see Require authentication to access a website.