SAML with PingIdentity

To configure SAML with PingIdentity for erwin Mart Portal authentication, follow these steps:

1. Log in to PingIdentity Console.

   

2. Click Administrators to set up your environment.

   

3. Click Identities > Users > .

   

4. Enter user's information and click Save.

5. Click Identities > Groups > .

   

6. Enter Group Name and select Population.

7. Click Save.

   

8. Click . Then, click Add/Remove Users.

   

9. Select the users that you want to add to your group and click Save.

10. Click Connections > Applications > .

    

11. Enter an Application Name.

12. Click SAML Application and click Save.

    

13. Click Import Metadata and select the file that you downloaded (erwin Mart Portal Configuration > Authentication tab > Download SP Metadata) during erwin Mart Portal configuration.

    

14. Click Save.

    

15. Click against your application name to enable user access to your application.

16. In the list of applications, click your application name.

    

17. Click Attribute Mappings > > Add.

    

18. Add another attribute and map as shown in the following image.

    

    Similarly, you can add a display name here.

19. Click Save.
    These attributes will be used on the erwin Mart Portal Configuration screen.

20. Click Configuration.

    

21. Copy and note the IDP Metadata URL.
    

22. Depending on your Mart version, do one of the following:

    • For Mart Portal on-premises, on the erwin Mart PortalConfiguration screen, click the Authentication tab, and then and follow these steps:

      1. In the Metadata XML field, paste the copied SAML Metadata URL copied in step 21.

      2. In the Group Attribute Name, User Email Attribute Name, and User Display Name Attribute Name fields, enter the values that are configured in step 18.

         

         The User Email Attribute Name and User Display Name Attribute Name fields are optional.

    • For Mart Portal on cloud, share the following details with the Mart Cloud Support team:

      • Metadata XML URL

      • Group Attribute Name

      • User Email Attribute Name

      • User Display Name Attribute Name

      Once the support team authenticates erwin Mart Portal for you, you can move to adding groups in erwin Mart Portal at https://<your_instance>.myerwin.com/MartPortal.

Adding Groups in erwin Mart Portal

To add your PingIdentity SAML groups to erwin Mart Portal, follow these steps:

1. Create a CSV file in the following format: <group_attribute_value>,<group_display_name>.

2. Log in to the erwin Mart Portal as an administrator.

3. Go to Application Menu > Users.
   The Users page appears.

   

4. Click Add User.
   The Add User page appears.

   

5. Under User Type, select SAML Group

   

6. Drag and drop the CSV file that you created in step 1.

7. Under Group name, select the required group.

8. In the Email Address field, enter your email address.

9. Click Save.

The group has been added.