Authentication & User Management
-
- Set up and populate your SaaS stack
- Integrate your ERP & Accounting software with Sastrify
- Tool Discovery via SSO (Single Sign-On) integrations
- Set Renewal Dates & Reminders
- Assign and modify Tool Owners
- Upload your SaaS documents into Sastrify
- Sastrify App Support: Assistance at your Fingertip
- Roll out Sastrify across your organization
- Sastrify's Commitment to Security and Privacy Standards
-
- Google Workspace SSO Integration for Tool Discovery
- Enhance organizational SaaS management with HRIS Integrations
- Summary Tab for storing your subscription details
- Use Discovered Page to detect active subscriptions
- Tools and Spend Importer: Easily upload and visualize data in Sastrify
- Add Sastrify App to your Slack workspace
- Manually add a new tool subscription
- Bulk upload of SaaS invoices
- Forward your SaaS documents via email
- Change notification preferences
- Maximizing the benefits of the Overview page
- Manage activities and collaborate using custom tasks
- Task Automation: Streamline the creation of routine tasks
- Archive or delete inactive subscriptions
-
- Utilize Usage Analytics for full usage visibility
- Integrate Pleo with Sastrify
- Validate and fine-tune spend data with the Spend feature
- How to connect Microsoft Dynamics
- How to connect Netsuite
- How to connect Quickbooks
- Import spend data from Candis to Sastrify
- Import spend data from Spendesk to Sastrify
- Import spend data from Pleo to Sastrify
- Import spend data from Moss to Sastrify
- Import spend data from DATEV to Sastrify
- Zoom Usage Analytics Integration Guide
-
- Get Expert Procurement Support for New Purchases and Renewals
- Scope of Service: Custom Benchmarking & Contract Review
- Scope of Service: Negotiation & Renewal Support
- Scope of Service: Custom SaaS Optimization Advisory
- Purchase your SaaS through the SastriMarket
- Control your cloud costs with SastriCloud
-
- ERP & Accounting Integration FAQs
- Discovery via SSO Integration FAQs
- HRIS Integration FAQs
- Usage Analytics FAQs
- Tools and Spend Importer FAQs
- Invoices FAQs
- Achieved & Potential Savings FAQs
- What is SaaS and Sastrify's scope of work?
- Who can invite a new user?
- Who receives the renewal alerts or reminders?
- How does Sastrify work with currencies?
- Is the spend data from accounting export always up-to-date?
- How to work with benchmark prices
- When and how to involve Sastrify in a contract evaluation or negotiation?
- How does Sastrify interact with SaaS vendors?
- How do you handle confidentiality clauses in vendor contracts?
- Does Sastrify handle SaaS contract termination?
- Why is contract data essential for benchmarking and negotiation support?
-
- Connecting your accounting software with Sastrify
- How to assign Tool Owners
- What Sastrify can do for Tool Owners
- How to set renewal dates
- How to set up a company-wide renewal reminder
- How to keep your tool stack updated
- How to set up, activate, and use a Workflow
- How to invite new users to Sastrify
- How to use Procurement Initiatives for new purchase & renewal
- How to collaborate using custom tasks
- Report issues and track procurement involvements
- Best Practices on how to work with Procurement Initiatives
- How to set up direct usage analytics integration
- How to set up SSO usage analytics integrations
- How to work with the Discovered tab
- How to use subscription tags
- Walk-through of the subscription detail page
Cisco Duo SSO Login Configuration Guide Print
Modified on: Wed, 12 Jun, 2024 at 5:36 PM
Applicable to the following Sastrify plans:
| Legacy* | Essential | Pro | Platinum |
|---|---|---|---|
| ✔ | ✘ | ✔ | ✔ |
* Legacy includes all plans signed before February 29, 2024.
In this configuration guide, you will learn how to configure Cisco Duo single sign-on (SSO) login and authentication for accessing Sastrify.
IN THIS ARTICLE
- Step 1: Select the login method in Sastrify
- Step 2: Create a Generic SAML Service Provider application and generate credentials
- Step 3: Send the credentials to Sastrify
To set up Cisco Duo SSO as your login method for Sastrify, follow this 3-step process:
- Select "Login with Cisco Duo" as your login method in your Sastrify platform
- Create a Generic SAML Service Provider application for Sastrify in your Disco Duo account and generate your credentials: Single Sign-On URL and idP Certificate.
- Send the credentials to Sastrify
Each step is detailed in the following sections.
Step 1: Select the login method in Sastrify
From your Sastrify app,
- Click on Settings in the left menu.
- Select "Users & Authentication".
- Under Authentication Settings, click Edit
- Select "Login with Cisco Duo".
- Click "Enable SSO"
After completing Step 5, you will receive a confirmation notifying you that your SSO enablement request has been sent to the Sastrify App Support team. This will trigger an email prompt for you to later send the required information (Step 3) to complete the configuration process.
Now that step 1 is complete, let's move on to step 2 to start generating the required credentials from your Cisco Duo account.
Step 2: Create a Generic SAML Service Provider application and generate credentials
First, you will need to create an app for Sastrify within your Cisco Duo account. To do this,
- Sign in to your Duo Admin Portal using your admin account.
- Navigate to Applications.
- Click Protect an Application and locate the entry for Generic SAML Service Provider with a protection type of "2FA with SSO hosted by Duo (Single Sign-On)" in the applications list.
- Click the "Protect" to start configuring Generic SAML Service Provider.
- Choose Generic SAML Service Provider from the list of applications.
- Under the Service Provider section, set the following values:
- Entity ID: urn:auth0:sastrix:<company_name>-CISCODUO-SSO-PROD
- ACS URL: https://login.sastrify.com/login/callback?connection=<company_name>-CISCODUO-SSO-PROD
- Single Logout URL: https://login.sastrify.com/logout
- Make sure to replace <company_name> for all the above with your own company name, without space and in all caps, for example: urn:auth0:sastrix:COMPANYABC-CISCODUO-SSO-PROD
- Under the SAML Response section, set following values:
- NameID Format : nameid::format::emailAddress
- NameID Attribute: <Email Address>
- Signature Algorithm: SHA256
- Configure and map the following attributes.
Cisco Duo will automatically generate Single Sign-On URL and idP Certificate.
Copy the URL, download the certificate (see below), and proceed to step 3 to send these credentials to our App Support team to complete the configuration process.
Step 3: Send the credentials to Sastrify
The final part is the easiest. Simply send all the credentials to Sastrify by replying to the email generated from Step 1.
Once we receive your credentials, our Support Team will begin enabling the SSO login method within an SLA of 2 business days. You will be notified via email once the configuration is fully enabled.
Did you find it helpful? Yes No
Send feedback