[ZTA] Applications/SaaS

  1. New SaaS button: Create a new SaaS application.
  2. Search field: Search for a SaaS application by its name.
  3. Status: Shows the status of the application. Can be toggled on (enabled) or off (disabled).
  4. Name: Shows the name of the SaaS application.
  5. ACS URL: Shows the SP's ACS URL configured for the SaaS application.
  6. Category: Shows the categories associated with the applications.
  7. Expand/Shrink button: A '+' button to expand and a '–' button to shrink the SaaS application's detailed information.

  1. Edit button: Allow modification of SaaS application's configurations.
  2. Delete button: Delete the application.
  3. Name: Name of the SaaS application.
  4. Site: The list of sites where the application is published. Only select the sites where it can reach the application's address.
  5. Domain: Tenant's domain.
  6. ACS URL: ACS URL provided by the Service Provider. Must use https:// protocol.
  7. Entity ID: Entity ID of the service provider. Can accept URN and URL.
  8. Relay State: The value for Relay State to the Service Provider. Can accept URL or hashed values.
  9. Encrypt SAML Assertion: Control whether the SAML assertion sent is to be encrypted or not. If enabled, the service provider's certificate must be provided in the configuration.
  10. Visible: Control whether the application should be visible in the user portal or not.
    • If toggled on, user can see, click and access the application from user portal.
    • If toggled off, user cannot see and click the application on the user portal, but it can still be accessed by entering the access URL on browser.
  11. Icon Upload button: Upload an icon image from local drive.
  12. Icon Image: Icon for the application. By default, will automatically use favicon of the ACS URL, otherwise no icon. Can be changed by uploading an icon from local drive.
  13. Allow IDP-Initiated Flow: Control whether the use can log in to the application directly when accessing from user portal or not.
  14. Use URI suffix as relay state parameter: Decide whether to use URI suffix as relay state parameter or not.
  15. Category: Select the list of categories to associate with the application.
  16. Policies (Condition and Action): Define the policy to be applied for the application.
    1. Status: Set the status of the policy. Toggle on to enable, toggle off for disable
    2. Accounts: Define the entities that should be applied to the policy.
    3. Condition: Select the access condition that should apply to the policy from the list of available conditions.
    4. Action: Select the configuration that should apply to the policy for the SaaS application from the list of available actions.
  17. Identity Provider Info: A set of IdP-side SAML information that needs to be configured on the Service Provider's side.
    1. SSO URL: The IdP's login URL.
    2. Metadata: Metadata document of the Safous SaaS application's IdP.
    3. Issuer: Entity ID of the IdP.
    4. Certificate: X509 certificate of the IdP.