This Integration Guide for ExtremeCloud IQ
version 24.6.0 provides in-depth technical instructions for configuring
Self-Service SAML Single Sign-On (SSO) within the platform. Designed for system
administrators, it covers integration with external Identity Providers (IdPs)
such as Microsoft Entra ID (formerly Azure Active Directory) and Okta. Topics
include the creation of enterprise applications, detailed user and group
assignments, and advanced user attribute mapping for role-based access. Key
steps involve exporting and importing Service Provider (SP) metadata,
configuring SAML attributes, and conducting SP- and IdP-initiated login tests.
Advanced sections focus on security group-to-role mapping and certificate
management, along with future considerations for enhancing security through
improved certificate handling. Technical details emphasize secure, scalable
authentication workflows, complemented by troubleshooting guidance for seamless
SSO integration with external IdP systems.
