Topic

Uploading a new metadata file into the Single Sign-On (SSO) settings at the account level for the Everbridge Member Portal.

Description

After acquiring a new certificate or when Identity Provider (IdP) system settings change, follow the steps below.

Prepare the Organization

Before making changes, communicate to contacts that SSO is scheduled for reconfiguration.

Backup the Existing Configuration

1. Log in to the Manager Portal as an Account Administrator.
2. Select Settings from the top menu bar.
3. Select Security from the menu on the left.
4. Select Single Sign-On for Member Portal from the sub-menu.
5. Capture the existing configuration by taking screenshots or copying the information into a text file.
6. Click Download at the bottom of the page, to the right of each Member Portal configuration, to download the existing metadata files.

Update Only the Identity Provider Metadata File

1. Log in to the Manager Portal as an Account Administrator.
2. Select Settings from the top menu bar.
3. Select Security from the menu on the left.
4. Select Single Sign-On for Member Portal from the sub-menu.
5. Select the Edit icon to the right of the current metadata file name.
6. Select the new metadata file from local files.
7. Select Open.
8. Select Save.
9. Proceed to testing the SSO configuration.

Reconfigure Member Portal SSO Settings

1. Log in to the Manager Portal as an Account Administrator.
2. Select Settings from the top menu bar.
3. Select Security from the menu on the left.
4. Select Single Sign-On for Member Portal from the sub-menu.
5. Select Remove to clear the existing configuration.

6. Using the backup, re-enter the Name for the SSO instance.
7. Using the backup, re-enter the API Name. The API name must exactly match the Entity ID and Reply URLs.
8. Upload the Identity Provider Metadata file by selecting Choose File.
9. Select the appropriate option for the Security Hash Algorithm.
10. Select the appropriate option for the SAML Identity Location.
11. Select the appropriate option for the Service Provider Initiated Request Binding.
12. Select the appropriate option for the Single Logout Redirector.
13. Select Save.
14. Select the checkbox for Member Portal to enable SSO access.
15. Optional: Select the checkbox for Mobile App to enable SSO access for the Everbridge Mobile App. Populate the Mobile App Key Phrase using the backup configuration.
16. Select Save again to enable the option to Download the metadata file from Everbridge. When the Download option appears next to the organization name, reconfiguration is complete.

Test the New SSO Configuration

Request a small group of contacts to attempt login using SSO. If login fails:

1. Capture screenshots and exact error messages.
2. Restore the previous configuration by uploading the prior metadata and re-entering the saved settings from the backup step.
3. Contact the IdP administrator to determine whether an issue exists on the IdP side.
4. Contact Everbridge Support and provide the error message, impacted user, username used during login, and the date and time of the failed attempt.

Download XML for Record Keeping

If reconfiguration is successful, download the XML file used to create the new SSO configuration for record keeping by following the steps below:

1. Log in to the Manager Portal as an Account Administrator.
2. Select Settings from the top menu bar.
3. Select Security from the menu on the left.
4. Select Single Sign-On for Member Portal from the sub-menu.
5. Select Download at the bottom of the configuration page.

Related Articles

EBS: Single Sign-On (SSO) Unauthorized Access Error When Logging in to the Everbridge Manager or Member Portals

EBS: Troubleshooting & Configuration Guide for Single Sign-On (SSO) - Main Page

EBS: Troubleshooting Single Sign-On (SSO) in Everbridge Suite