Citrix Secure Private Access

Configure ERP Cloud

Citrix Gateway SaaS Application

Users can securely log on to ERP Cloud using their enterprise credentials.

To configure ERP Cloud for SSO through SAML, perform the following:

  1. In a browser, type: https://<organizationid>.identity.oraclecloud.com/ui/v1/adminconsole/?root=security&security=external-idp and press Enter.

  2. Log on to your ERP Cloud account.

    Log on to ERP account

  3. On the home page, in the upper right corner, click your profile initials and click Admin Console.

    Admin console on home page

  4. In the upper left corner, click the ellipses.

  5. Click Security.

    Select security

  6. Click Identity Providers.

    Click to add identity providers

  7. On the Identity Providers page, click Add SAML IdP.

    Add SAML IdP

  8. On the Identity Providers page, specify the following information:

    IdP details

    1. Signing Certificate– paste the PEM certificate.

      To obtain your IdP certificate, perform the following:

      • Remotely access your NetScaler instance using PuTTY.

      • Navigate to /nsconfig/ssl folder (using shell command cd /nsconfig/ssl) and press Enter.

      • Type cat <certificate-name> and press Enter.

      • Copy the text from —–BEGIN CERTIFICATE—– to —–ENDCERTIFICATE—–

      • Paste the text in a text editor and save the file in an appropriate format such as your organization name.pem

        Sample certificate

    2. Issuer ID – type a unique name.

    3. Signature Hashing Algorithm – select hashing algorithm used to sign SAML messages.
    4. Include Signing Certificate - select the check box if you want to include signing certificate to verify the signature of the messages for the IdP.
    5. Global Logout Activated - select the check box if you want to activate SAML global logouts.
    6. SSO Service URL – enter the IdP URL followed by /saml/ login. For example: https://<netscalerinstance>.com/saml/ login

    7. SSO Service Binding– click the appropriate option to send an authentication request.

    8. Requested NameID Format – click the appropriate format for mapping the user’s attribute value in IdP to the corresponding attribute in Oracle Identity CloudService.

    9. Identity Provider User Attribute – click the appropriate attribute value received from IdP to uniquely identify the user.

    10. Oracle Identity Cloud Service User Attribute– click the appropriate attribute that you use to map the attribute received from IdP.
  9. Click Save Changes.

Configure ERP Cloud