Topic

Single Sign-On (SSO): Enable Signature Validation Feature in Everbridge Suite.

Description

A new field will be added to the Account Level Manager Portal Single Sign-On Settings page called Enable Signature Validation:

NOTE: This modification is at the Account level Manager Portal only. This does not affect the Member Portal Security Settings at either the Account or Org level.

Why is Everbridge making this change?

As part of our commitment to continuous security improvements, Everbridge is allowing customers to optionally apply an additional security validation on their Single Sign-On settings. This validation will ensure that the SAML Assertion passed to Everbridge is validated and secure.

How will this change impact me?

There is no impact to your existing Single Sign-On configuration if Enable Signature Validation is not enabled. However, Everbridge recommends enabling security features when available.

To enable this additional security on your Single Sign-On, work with your IT department to verify that your Identity Provider allows you to configure for signature options. Note: Signature option labeling may differ based on the Identity Provider. If your Identity Provider configuration is already set to submit a signed certificate, no other action is needed.

If your Identity Provider configuration is not already set to submit a signed certificate, and if you want this additional security:

1. Change your Identity Provider settings
2. Upload a new metadata file to the Manager Portal Single Sign-On settings
3. Under the Manager Portal Single Sign-On Settings for your Account, select the Enable Signature Validation checkbox to have Everbridge validate your signature upon each user’s Single Sign-On authentication