Overview
This guide describes a step-by-step process to integrate CyberArk SSO with Grip Security, enabling users to authenticate securely.
Here, we will walk through the setup of a new SAML application in CyberArk, including the necessary configurations.
The Integration consists of two main steps:
Create a New SAML Application in CyberArk
Configure SAML in the Grip Portal
Integration Benefits
Integrating CyberArk SSO with Grip Security offers several benefits, including:
Simplified access for users via Single Sign-On (SSO).
Streamlined management of user authentication and provisioning.
Prerequisites
Access to the CyberArk administration panel.
Create a New SAML Application in CyberArk
To create the SAML in CyberArk, you will first need to connect to Grip’s Admin panel and copy the “Entity ID”(1), the “Assertion Consumer Service” (ACS) URL” (2), and the “SAML Response Attribute” (3) from “Connect to CyberArk SSO” window.
You will also be required to provide Grip the “SAML Metadata XML URL” from CyberArk and copy it into the “Identity Provider Details” section (4).
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)
In the CyberArk “Identity Administration” panel, go to “Web Apps” >> “Add Web Apps”.
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)
Go to “SAML” and click on “Add”.
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)
Select the organization and click “Yes” >> “Close”.
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)
In the SAML “Settings” section, Type the SAML name.
Go to the “Trust” tab and copy the Metadata “URL.”
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)
Paste the URL into the “SAML Metadata XML URL” field in the Grip “Connect” window we showed in the first step (#4).
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)
Under “Service Provider Configuration”, select the “Manual Configuration” radio button.
Paste the “Entity ID” (1) and the “Assertion Consumer Service (ACS) URL” (2) taken from the Grip “Connect” window.
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)
Go to the “SAML Response” tab and click “Add.”
In the “Attribute Name” (3) field, paste the “SAML Response Attribute” value taken from the Grip “Connect” window, as seen in the first step of this process.
In the “Attribute Value” field, select “Email (4)”
Click “Save.”
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)
Click “Connect” in the Grip connection window.
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)
Once the SSO is connected a green checkbox is displayed.
.png?sv=2022-11-02&spr=https&st=2025-04-25T15%3A13%3A59Z&se=2025-04-25T15%3A24%3A59Z&sr=c&sp=r&sig=YNidLXe4rDoDGFJbkXAJpJgSNmxHbbymc%2B%2Ff6G0b2Hk%3D)