Add a SAML Configuration
The following feature is not supported in Tenable.io Federal Risk and Authorization Management Program (FedRAMP) environments. For more information, see the FedRAMP Product Offering.
Required User Role: Administrator
You can manually enter the details for your SAML configuration or you can upload a metadata.xml file that you download from your identity provider.
To add a new SAML configuration:
In the upper-left corner, click the button.
The left navigation plane appears.
In the left navigation plane, click Settings.
The Settings page appears.
Click the SAML tile.
The SAML page appears.
In the action bar, click Create.
The SAML Settings page appears.
Do one of the following:To provide configuration details by uploading the XML metadata file your IdP provided:
To manually configure your SAML configuration options using data from the metadata.xml file your IdP provided:
In the first drop-down box, select Import XML.
Note: Import XML is selected by default.
Under Import, click Add File.
A file explorer window appears.
Select the metadata.xml file.
The metadata.xml file is uploaded.
In the first drop-down box, select Manual Entry.
A SAML configuration form appears.
Configure the settings described in the following table:
Settings Description Type Specifies the type of identity provider you are using. Tenable.iosupports SAML 2.0 (e.g., Okta, OneLogin, etc.).
This option is read-only.
Description A description for the SAML configuration. IdP Entity ID
The unique entity ID that your IdP provides.
Note: If you want to configure multiple IdPs for a user account, create a new configuration for each identity provider with separate identity provider URLs, entity IDs, and signing certificates.
IdP URL The SAML URL for your IdP. Certificate
Your IdP security certificate or certificates.
Note: Security certificates are found in a metadata.xml file that your identity provider provides. You can copy the content of the file and paste it in the Certificate box.
By default, the Enable setting is set to Enabled.
User Auto Provisioning Enabled
Copy the URL from the IdP URL box.
In your SAML identity provider's application, paste the URL in the target URL box.
Tenable.iosaves your SAML configuration.