You can configure Tenable MSSP to accept credentials from your SAML identity provider (for example, Okta). This allows for an additional layer of security, where the SAML credentials are certified for use within Tenable MSSP. Once you enable SAML for a user, they can log in to Tenable MSSP directly through their identity provider, which automatically signs them in and redirects them to the Tenable MSSP landing page.
On the SAML page, you can view and manage your SAML credentials. You can also enable, disable, and add new configurations for users within your Tenable MSSP instance.
Note: Tenable MSSP supports SAML 2.0 configurations.
On the SAML page, you can view a table that includes the following details about your SAML configurations:
|The UUID that Tenable MSSP automatically generates when you create a new SAML configuration.
A description for the SAML configuration.
The date and time on which a user on your instance last successfully logged in via the SAML configuration.
Note: The Last Login column shows a value only if Tenable MSSP has login data for the SAML identity provider.
|Last Attempted Login
The date and time on which a user on your instance last attempted to log in via the SAML configuration.
Note: The Last Attempted Login column shows a value only if Tenable MSSP has attempted login data for the SAML identity provider.
The certificate for the SAML configuration.
In the certificate column, you can complete the following tasks.
An interactive column from which you can download the metadata.xml file that contains one or more security certificates for the configuration.
To download the metadata.xml file:
On the SAML page, you can perform the following tasks: