Login

Security Cloud Control Getting Started Guide for Existing Customers

Before you Begin
- Is This Guide For you
- About Cisco Security Cloud Control
- Products Managed by Cisco Security Cloud Control
- Getting Started Workflow
Signing in to Security Cloud Control
- Signing in to Security Cloud Control
- Overview of Security Cloud Sign On
- Products Supported by Security Cloud Sign On
- Creating a Security Cloud Sign On Account
Your Landing Page
- Set Your Default Landing Page
Organizations and Regions
- Create an Organization
Add a Domain
- Claim and verify a domain
Integrate an Identity Provider
- Prerequisites
- SAML Response Requirements
- Step 1: Initial setup
- Step 2: Provide Security Cloud SAML metadata to your identity provider
- Step 3: Provide SAML metadata from your IdP to Security Cloud
- Step 4: Test your SAML integration
- Step 5: Activate the integration
- Troubleshooting SAML errors
Role-Based Access Control (RBAC)
- Role-Based Access Control in an Organization
- Invite a User
- Import Users
- Create a New Group
- Add Users to a Group
- Assign Roles to Groups
Claim Your Product Subscriptions
- Overview of Subscription Process
- Enable Firewall in Security Cloud Control
- Claim a Subscription
- Activate a Product Instance
  - Activate an Inactive Product Instance
  - Activate an Externally Managed Product Instance
  - Activation Code to Activate Externally Managed Product Instance
  - Activate a Product Instance with Further Inputs
Onboard Devices to Security Cloud Control
- Secure ASA Onboarding Methods
- Secure Firewall Threat Defense Onboarding Methods
- On-Premises Firewall Management Center Onboarding Methods
- Meraki Security Appliance Onboarding Methods
- Cisco IOS Device Onboarding Methods
- Secure Firewall Chassis Manager Onboarding Methods
- AWS Virtual Private Cloud Onboarding Methods
- Cisco Umbrella Organization Onboarding Methods
Next Steps
- Additional Configuration Assistance
Additional Documentation and Support
- AI Defense Documentation
- Firewall in Security Cloud Control Documentation
- Multicloud Defense Documentation
- Secure Access Documentation
- Secure Workload Documentation
- Customer Support Resources
Cisco Support Access
- Cisco Support Access to your Organization
- Enable Cisco Support Access

Activity Onboard

Integrate an Identity Provider Step 5: Activate the integration

Last updated: Jul 16, 2025

Step 5: Activate the integration

After you've tested your SAML integration, you can activate it. Activating an integration has the following effects:

Users in the verified domain must authenticate using the integrated identity provider. If a user tries to sign in using the Cisco or Microsoft social sign-on options, a 400 error occurs.
Users that sign in to Security Cloud Sign On with an email domain that matches your claimed domain are redirected to your identity provider to authenticate.
If you opted in to Duo MFA, users in your claimed domain can no longer manage their MFA settings.

Be sure to test your integration before activating it.

You can activate an integration in the following way:

Procedure

1	In the Security Cloud Control platform menu, choose Platform Services > Platform Management.
2	Choose Integrations > Identity Providers.
3	In the Identity Providers > Edit identity provider > Activate page, click Activate my IdP.
4	Click Activate in the dialog box to confirm the action.

Previous topic Step 4: Test your SAML integration Next topic Troubleshooting SAML errors