Integrate SolarWinds Observability with Zero Trust Network Access

In this topic, you will find general instructions on how to integrate SolarWinds Observability with Portnox™ Zero Trust Network Access using the conditional access method.

Create a Portnox Cloud application configuration

In this step, you will create a configuration in Portnox Cloud that will contain all the information necessary to integrate with SolarWinds Observability.

  1. In a new tab of your browser, open your Portnox Cloud account by accessing the following URL: https://clear.portnox.com/

    From now on, we will call this tab the Portnox tab.

  2. In the Cloud portal top menu, click on the Zero Trust Resources option.

  3. On the Resources screen, click on the Create resource button.

    1. In the What type of resource is this? section, select the SSO web resource option.
    2. In the Authentication protocol section, select the SAML option.
    3. Click on the Next button.

  4. Optional: If you have more than one SAML identity provider configured, select the identity provider in the Select an identity provider to use for this resource section.
  5. In the Resource details section, enter a Resource name and optionally a Description.

    In this example, we used the name SolarWinds for the new application configuration but you can use any name you like.

  6. Keep this browser tab open. You will need it later.

Open your SolarWinds Observability SAML settings

In this section, you will access your SolarWinds Observability tenant and find the SAML settings.

  1. In another tab of your browser, open SolarWinds Observability by accessing the following URL: https://swo.cloud.solarwinds.com/ and logging in.

    From now on, we will call this tab the SolarWinds tab.

  2. In the bottom part of the left-hand side menu, click on the Settings option.

  3. In the MY SETTINGS pane, in the left-hand side menu, click on the Security option.

  4. Click on the SAML tile.

Copy configuration values from the SolarWinds tab to the Portnox tab

In this section, you will copy the values displayed in your SolarWinds Observability SAML setup section, and paste them in the relevant fields in Portnox Cloud.

  1. In the SolarWinds tab, click on the  📋  icon next to the Entity ID field to copy the value to the clipboard.

  2. In the Portnox tab, in the Resource properties section, click on the empty field under the Entity ID / Service Provider Entity URL heading and paste the value copied from SolarWinds.

  3. In the SolarWinds tab, click on the  📋  icon next to the ACS URL field to copy the value to the clipboard.

  4. In the Portnox tab, in the Resource properties section, click on the empty field under the Assertion Consumer Service (ACS) URL / Reply URL heading and paste the value copied from SolarWinds.

Copy configuration values from the Portnox tab to the SolarWinds tab

In this section, you will copy the values displayed by Portnox Cloud and paste them in the relevant fields in the SolarWinds Observability SAML setup section.

  1. In the Portnox tab, in the Service details section, click on the  ⧉  icon next to the Identity Provider Entity ID / Audience URI field to copy the value.

  2. In the SolarWinds tab, click on the empty field under the Issuer (Entity ID) label and paste the value copied from Portnox Cloud.

  3. In the Portnox tab, in the Service details section, click on the  ⧉  icon next to the Sign-In URL / SSO URL field to copy the value.

  4. In the SolarWinds tab, click on the empty field under the SAML URL label and paste the value copied from Portnox Cloud.

  5. In the Portnox tab, in the Certificates > Signing certificates section, click on the  ⋮  icon next to the Active certificate and select the Copy certificate option to copy the certificate.

  6. In the SolarWinds tab, click on the empty field under the Identity Provider Certificate label and paste the value copied from Portnox Cloud.

Finalize the configuration

In this section, you will finalize the configuration in Portnox Cloud and SolarWinds.

  1. Finalize the configuration in the Portnox tab.
    1. Optional: In the Policy enforcement section, in the Device risk assessment section, change the setting to Override with custom policy and then select a risk assessment policy if you want to assess risk with this application using a custom risk assessment policy, and in the Access control section, change the setting to Override with custom policy and then select an access control policy if you want to control access to this application using a custom access control policy.
    2. Scroll all the way down to the end of the page, and then click on the Save and Close button.

  2. Finalize the configuration in the SolarWinds tab.
    1. Click on the Save button to save the SAML configuration.

    2. Optional: In the SERVICE ACCOUNTS tab, add users that will be able to log in using their SolarWinds Observability credentials in addition to Zero Trust Network Access. Then, click on the Save button.
      Note: We recommend that you temporarily add important users when you configure SAML for the first time, to avoid locking these users out of SolarWinds Observability if your configuration is not correct. The account owner is always allowed to log in using their credentials.

    3. Activate the Enable SAML Integration switch in the top-right corner.

Result: You have configured SolarWinds Observability to be accessible using Portnox Zero Trust Network Access.