Search <product_name> all support & community content...

How to enroll NetBackup Flex Scale primary server as a service provider in Azure active directory Identity provider when the cluster is deployed with both NetBackup primary and media servers

Article: 100062434

Last Published: 2024-04-17

Ratings: 0 0

Product(s): Appliances

Description

Open Microsoft Azure portal. Login using your personal credentials.
Click Enterprise applications under Azure services.
Click New application ( )
Click Create your own application.
Provide an IDP name and select Integrate any other application you don't find in the gallery (Non-gallery) and click Create.
Once the Application gets created, click Single sign-on, and then click the SAML tile.
Click on Edit for Basic SAML configuration.
Enter the values of both Entity ID and Reply URL.
Entity ID : https://<nbu-primary>/netbackup/sso/callback/SAML2Client
Replay URL : https://<nbu-primary>/netbackup/sso/callback/SAML2Client
Select Edit option for Attribute & Claim and click Add new claim.
Enter the Name as userPrincipalName and enter the Source attribute as user.userprincipalname.
Click Add a group claim, and select All groups under Group Claims and enter the Source attribute as DNSDomain\sAMAccountName.
Under Advance settings for group name, check the Customize the name for the group claim checkbox and provide memberOf as the name for the claim and click Save.
For the SAML certificate, click Edit. Select Sign SAML response and assertion as the Signing option and click Save.
Download the Federation metadata XML from the link provided.
Click Users and groups for the IDP application created.
Click Add user/group
Select User and groups for the assignment and click Save and then, click Assign.
Navigate to the NetBackup Flex UI. Go to Settings > Security > Single-sign on.
Provide a name for IDP and upload the federation metadata XML and click Save.
Add the same Users/groups in NetBackup > Security > RBAC as SAML users/groups.
Login with SSO.