Topic:

How to enable signature validation for your Everbridge account.

Description:

This feature allows customers to explicitly choose the most secure Manager Portal SSO configuration to prevent SAML spoofing. By signing the SAML response with a private certificate, our system can assert that non-repudiation exists between the client IDP and the Everbridge authentication service.

Prerequisites

• Ensure your IDP is configured for a Signed SAML (Response/Assertion/Both).
• If a configuration change is required, download a new metadata file.

To use Signature Validation for an added layer of SSO security

1. Log in to the Manager Portal at the Account level.
2. From the Settings tab, select Security > Single Sign-On for Manager Portal.
3. Select the check box: Enable Signature Validation.
4. If needed, upload a new metadata file under Identity Provider Metadata.
5. Click Save.