Update Blog “configuring-sso-for-hpe-greenlake-central-private-cloud-enterprise-and-hpe-greenlake-glcp-using-okta”

prabhum456 · prabhum456 · commit e9d712581087 · 2023-11-29T16:11:42.000+05:30
diff --git a/content/blog/configuring-sso-for-hpe-greenlake-central-private-cloud-enterprise-and-hpe-greenlake-glcp-using-okta.md b/content/blog/configuring-sso-for-hpe-greenlake-central-private-cloud-enterprise-and-hpe-greenlake-glcp-using-okta.md
@@ -1,6 +1,6 @@
 ---
-title: Configuring Okta AD as the SAML IDP with HPE Greenlake Central (Private
-  Cloud Enterprise) and HPE GreenLake (GLP) using Okta
+title: How to implement a single sign-on solution to authenticate users onto the
+  HPE GreenLake edge-to-cloud platform
 date: 2023-11-29T10:08:49.979Z
 featuredBlog: false
 externalLink: ""
@@ -16,15 +16,13 @@ tags:
   - Private Cloud Enterprise
   - hpe-greenlake
 ---
-Many enterprises today are looking to implement a single-sign on (SSO) solution that enables their users to easily access all of their cloud and web applications. A key requirement of these solutions is Active Directory integration, which makes it possible to connect cloud applications back to a single source of truth, Active Directory. HPE GreenLake Cloud Platform (GLCP) supports Single Sign On (SSO)
+Enterprises looking to use HPE GreenLake for Private Cloud Enterprise can benefit from the use of SSO, as it has been integrated onto the HPE GreenLake edge-to-cloud platform, which supports single sign-on
 
-HPE Greenlake Central for Private Cloud Enterprise has been integrated into the HPE GreenLake Cloud Platform (GLCP). 
-
-I will walk you through the process of configuring Okta AD to authenticate users into the HPE GreenLake Cloud Platform (HPE GLCP) and HPE GreenLake for Private Cloud Enterprise application using SAML IDP.
+In this blog post, I will walk you through the process of configuring Okta AD to authenticate users into the HPE GreenLake for Private Cloud Enterprise application on the HPE GreenLake platform using SAML Identity Provider (IdP) for single sign-on.
 
 ### Before starting
 
-Please review the [HPE GreenLake](https://support.hpe.com/hpesc/public/docDisplay?docId=a00120892en_us&page=GUID-D7192971-EF71-4304-B51E-548E7954E644.html) User Guide to understand how the SAML framework works in the context of Common Cloud Services for the HPE GreenLake Cloud Platform for HPE Greenlake Central (Private Cloud Enterprise) application.
+Please review the [HPE GreenLake](https://support.hpe.com/hpesc/public/docDisplay?docId=a00120892en_us&page=GUID-D7192971-EF71-4304-B51E-548E7954E644.html) User Guide to understand how the SAML framework works in the context of Common Cloud Services for the HPE GreenLake edge-to-cloud platform for HPE GreenLake Private Cloud Enterprise application .
 
 **S﻿teps to be followed in Customer Okta:**
 
@@ -35,7 +33,7 @@ Please review the [HPE GreenLake](https://support.hpe.com/hpesc/public/docDispl
 * Step 1: Create an Okta SAML application
 * Step 2: Configure Sign On settings
 * Step 3: Export the SAML 2.0 IdP metadata
-* Step 4: Configure the SAML connection in HPE GreenLake Cloud Platform
+* Step 4: Configure the SAML connection in HPE GreenLake edge-to-cloud platform
 
 **Step 1: Create an Okta SAML application**
 
@@ -45,11 +43,11 @@ Please review the [HPE GreenLake](https://support.hpe.com/hpesc/public/docDispl
 
 ![](/img/ws-image0.png)
 
-Provide a name for the SAML application which gets connected to HPE GreenLake Cloud Platform(GLCP)
+Provide a name for the SAML application which gets connected to HPE GreenLake edge-to-cloud platform
 
 ![](/img/customer_saml_app.jpg)
 
-**Step 2: How to configure Single Sign On settings**
+**Step 2: How to configure single sign-on settings**
 
 1. Enter the SAML information.
 
@@ -73,7 +71,7 @@ Provide a name for the SAML application which gets connected to HPE GreenLake Cl
 
    See here for IdP attribute details: <https://support.hpe.com/hpesc/public/docDisplay?docId=a00120892en_us>
 
-   A new SAML attribute has been added “hpe_ccs_attribute” which tells HPE GreenLake and HPE Greenlake Central (Private Cloud Enterprise) the exact role/permissions for each user. The following describes how to format the attribute.
+   A new SAML attribute has been added “hpe_ccs_attribute” which tells HPE GreenLake edge-to-cloud platform and HPE GreenLake Private Cloud Enterprise application the exact role/permissions for each user. The following describes how to format the attribute.
 
    Format: {version}#{pcid}:{app id}:{role_name}:{ALL_SCOPES}
 
@@ -83,7 +81,7 @@ Provide a name for the SAML application which gets connected to HPE GreenLake Cl
 
 ![](/img/glp_role_name.jpg)
 
-The **hpe_ccs_attribute** always starts with version1#. You must first configure the attributes for HPE GreenLake and To do so, enter the PCID for the account, followed by the HPE GreenLake application ID. This will always be **00000000-0000-0000-0000-000000000000**. Following this, enter the role name and ALL_SCOPES**.** 
+The **hpe_ccs_attribute** always starts with version1#. You must first configure the attributes for HPE GreenLake edge-to-cloud platform and To do so, enter the PCID for the account, followed by the HPE GreenLake application ID. This will always be **00000000-0000-0000-0000-000000000000**. Following this, enter the role name and ALL_SCOPES**.** 
 
 Example:
 
@@ -101,64 +99,64 @@ Click Next and Select “Internal App”, then Finish.
 
 1. Click Next – Configure the Sign On settings
 
-   You will find two options are available: **View Setup Instructions** which steps you through the SAML configuration and **Identity Provider metadata**, which will produce an XML file that can be loaded into HPE GreenLake Cloud Platform (GLCP) application
+   You will find two options are available: **View Setup Instructions** which steps you through the SAML configuration and **Identity Provider metadata**, which will produce an XML file that can be loaded into HPE GreenLake edge-to-cloud platform application
 
    Suggestion: Click **Identity Provider metadata** and save the XML data to a file.
 
    ![](/img/ws-image9.png)
 2. C﻿lick Next.       
 3. Select Internal app, and Click Finish.    
 
-   **Step 3.1 :  Access to the SAML application and HPE Greenlake is determined by assigning only those members or group to the SAML application.**
+   **Step 3.1 :  Access to the SAML application and HPE GreenLake edge-to-cloud platform is determined by assigning only those members or group to the SAML application.**
 
 ![](/img/customer-user-assignment-to-saml.jpg)
 
-**S﻿teps to be followed in HPE GreenLake Cloud Platform(GLCP)**
+**S﻿teps to be followed in HPE GreenLake edge-to-cloud platform**
 
-   ** Step 4: Create SAML Authorization Profile in HPE GreenLake Cloud Platform**
+    **Step 4: Create SAML Authorization Profile in HPE GreenLake edge-to-cloud platform**
 
-1. Log into **HPE GreenLake Cloud Platform** and click Menu > Manage > Authentication and Click Set Up SAML Connection.
+1. Log into HPE GreenLake edge-to-cloud platform and click Menu > Manage > Authentication and Click Set Up SAML Connection.
 
-   *Before you can add a new SAML configuration, you must have at least one user account with that domain already enabled in HPE GreenLake. Also, you must be logged into HPE GreenLake with an account from that domain in order to enable SSO for it.*
+   *Before you can add a new SAML configuration, you must have at least **one** user account with that **domain** already enabled in HPE GreenLake edge-to-cloud platform. Also, you must be logged into HPE GreenLake edge-to-cloud platform with an account from that domain in order to enable SSO for it.*
 
    ![](/img/ws-image10.png)
 2. Type in the domain you want to enable SSO on:
 
    ![](/img/glp_domain.jpg)
 3. Input the metadata from the step above.
 
-   While HPE GreenLake does support entering this information manually, it's recommended that you simply upload the XML metadata that was downloaded in the previous step. To do so, Select Metadata File, selecting the XML file. Then, click Next.
+   While HPE GreenLake edge-to-cloud platform does support entering this information manually, it's recommended that you simply upload the XML metadata that was downloaded in the previous step. To do so, Select Metadata File, selecting the XML file. Then, click Next.
 
    ![](/img/ws-image12.png)
 4. Enter the SAML attributes to match what was entered in Okta. Set the idle timeout value as well.
 
    ![](/img/config_setting_sso_appjpg.jpg)
 5. Then click Next.    
-6. Create a recover user so that, in the event SSO fails, an admin will still be able to access the HPE GreenLake portal.    
+6. Create a recover user so that, in the event SSO fails, an admin will still be able to access the HPE GreenLake edge-to-cloud platform.    
 
    ![](/img/recovery_user.jpg)
 
-   Congratulations! SSO will now be enabled for HPE GreenLake as well as the HPE GreenLake Cloud Platform (GLCP) application. Log out and on the HPE GreenLake home page, click **Sign in with SSO**.
+   Congratulations! SSO will now be enabled for HPE GreenLake edge-to-cloud platform as well as the HPE GreenLake Private Cloud Enterprise application. Log out and on the HPE GreenLake edge-to-cloud platform home page, click **Sign in with SSO**.
 
 **Testing and troubleshooting:**
 
-On the HPE GreenLake Cloud Platform home page, click **Sign In with SSO**.
+On the HPE GreenLake edge-to-cloud platform home page, click **Sign In with SSO**.
 
 ![](/img/ws-image15.png)
 
 ![](/img/hpe-greenlake-sso-page.jpg)
 
-Enter the SSO credentials. You will be redirected to Okta to authenticate. Once you successfully authenticate, you will be redirected back to HPE GreenLake. You can then click on the HPE GreenLake Cloud Platform (GLCP) application and be given access based on the configured role/permissions.
+Enter the SSO credentials. You will be redirected to Okta to authenticate. Once you successfully authenticate, you will be redirected back to HPE GreenLake edge-to-cloud platform. You can then click on the HPE GreenLake Private Cloud Enterprise application and be given access based on the configured role/permissions.
 
 **Additional notes:**
 
 * There must be at least **one** verified user belonging to the **Domain** prior to configuration.    
-* In order to configure SSO, you must be logged into HPE GreenLake with a user from the domain.    
+* In order to configure SSO, you must be logged into the HPE GreenLake edge-to-cloud platform with a user from the domain.
 * SSO user access is determined by the “role_name” attribute included in the SAML hpe_ccs_attribute provided by the IdP.    
 * For more troubleshooting: <https://support.hpe.com/hpesc/public/docDisplay?docId=a00120892en_us>
 
   * Customer users should be given access to SAML application.
 
-    After authentication when clicking the HPE GreenLake for Private Cloud Enterprise application**,** if it leads to the below error **it will take 1 hour to sync**, if not customer should contact HPE administrator. 
+    After authentication when clicking the HPE GreenLake edge-to-cloud platform for Private Cloud Enterprise application**,** if it leads to the below error, it will take 1 hr to sync. If it does not do so within that time period, the customer should contact their HPE administrator. 
 
 ![](/img/user_sync.jpg)
