Configuring Single Sign-on with DUO

Overview

DUO is one of the Identity Providers that your organization can configure for SSO and use to log in to your Zilla Security tenant.

Scope: Admins

This article covers the following topics:

Admin account with Zilla Security
SSO has not been configured or SSO configuration has been deleted in admin settings
You must be logged in as a DUO Administrator in DUO Admin portal.
DUO account should already configured with Authentication Provider.

Log in to Zilla as an admin and click the Settings tab on the left side of the page. On the Discovery & Configuration tab, expand the Single Sign-On Provider dropdown and click Configure.
Select the SAML option, and click Configure.
A SAML Configuration dialog will open.
Login into the DUO admin portal and go to the Applications → Protect an Application.
Search for the Generic SAML Service Provider and click Protect.
Name the Application as Zilla SAML Service Provider - Single Sign-On. And Enable it for all users.
Copy the EntityId and Single Sign-on URL from the DUO and paste it into the Zilla SAML configuration Page shown in step 3. Also Copy the certificate by clicking the copy certificate button and paste it into the certificate input box in Zilla SAML config page shown in step 3. From the certificate, delete the starting and ending text - -----BEGIN CERTIFICATE----- and -----END CERTIFICATE-----
Copy the values of Zilla ACS URL and Zilla Entity ID shown in Zilla SAML config page in step 3 and paste them into the DUO Service Provider section
Set the attribute mapping for the <Email Address> as the email in SAML Response.
Save the App in DUO.
Save the SAML configuration in Zilla by clicking the Validate button.
A green banner should appear indicating that your SSO configuration was successful.