Configuring Centrify SSO with Pivotal Cloud Foundry (SAML)

Configuring Centrify SSO with Pivotal Cloud Foundry (SAML)

By Centrify Contributor I ‎09-27-2017 04:03 PM

Centrify Configuration


  1. Log in to the Centrify Identity Platform as an Administrator
  2. Switch to Admin Portal
  3. Click on "Apps"
  4. Click on "Add Web Apps"


Screenshot 2017-09-27 17.14.56.png


5. Click on "Custom" template tab

6. Click "Add" for SAML


Screenshot 2017-09-27 17.22.08.png


7. Click "Yes" to add application


Screenshot 2017-09-27 17.24.46.png


8. Open Configure Application Settings in Centrify Dashboard


Screenshot 2017-09-27 17.47.38.png


9. Login to Pivotal SSO Dashboard


10. Navigate to "Plans"

11. Click on "Manage Identity Providers"


Screenshot 2017-09-27 17.52.02.png


12. Select "New Identity Provider"

13. Add Centrify as "Identity Provider Name"

14. Select "SAML 2.0" Identity Provider type


Screenshot 2017-09-27 17.58.11.png


15. From Centrify Admin Portal click "Download Identity Provider SAML Meta data"


Screenshot 2017-09-27 18.08.40.png


16. In Pivotal SSO Dashboard select "Upload Identity Provider Metadata"

17. Provide XML metadata file downloaded from Centrify Admin Portal in step #15

18. Select "Save Identity Provider"



Screenshot 2017-09-27 18.06.01.png

19. Select "Configure SAML Service Provider"


Screenshot 2017-09-27 18.35.24.png


20. Select "Download Metadata"


Screenshot 2017-09-27 18.35.44.png


21. Select "Upload SP Metadata" in Centrify Admin Portal

22. Choose XML file downloaded from step #20


Screenshot 2017-09-27 18.42.56.png


23. Compare relevant settings on both IDP and SP sides


Screenshot 2017-09-27 18.49.01.png


24. Choose "Save" under Application Settings in Centrify Admin Portal

25. Make sure application status is set to "Deployed"


26. [Updated March 2018] The Centrify Admin Console now has an updated User Interface to configure SAML settings (screenshot below.) The Idp & Sp metadata files can still be downloaded and uploaded to the appropriate target. In this case the IDP metadata file can be downloaded and uploaded to the SP (Pivotal CF.) Conversely the SP metadata file can be downloaded from Pivotal CF and uploaded here to the Centrify Admin Console. Manual Configuration is also an option if you prefer not to use the metadata XML files.


Screenshot 2018-03-30 11.47.13.png


Screenshot 2018-03-30 11.48.31.png


27. Test SSO in User Portal 


Screenshot 2017-09-27 18.54.32.png


28. Test SSO from SP source

29. Finished


Screenshot 2017-09-27 18.55.39.png


Showing results for 
Search instead for 
Do you mean 

Community Control Panel