Login

Security Cloud Control Getting Started Guide for Existing Customers

Before you Begin
- Is This Guide For you
- About Cisco Security Cloud Control
- Products Managed by Cisco Security Cloud Control
- Getting Started Workflow
Signing in to Security Cloud Control
- Signing in to Security Cloud Control
- Overview of Security Cloud Sign On
- Products Supported by Security Cloud Sign On
- Creating a Security Cloud Sign On Account
Your Landing Page
- Set Your Default Landing Page
Organizations and Regions
- Create an Organization
Add a Domain
- Claim and verify a domain
Integrate an Identity Provider
- Prerequisites
- SAML Response Requirements
- Step 1: Initial setup
- Step 2: Provide Security Cloud SAML metadata to your identity provider
- Step 3: Provide SAML metadata from your IdP to Security Cloud
- Step 4: Test your SAML integration
- Step 5: Activate the integration
- Troubleshooting SAML errors
Role-Based Access Control (RBAC)
- Role-Based Access Control in an Organization
- Invite a User
- Import Users
- Create a New Group
- Add Users to a Group
- Assign Roles to Groups
Claim Your Product Subscriptions
- Overview of Subscription Process
- Enable Firewall in Security Cloud Control
- Claim a Subscription
- Activate a Product Instance
  - Activate an Inactive Product Instance
  - Activate an Externally Managed Product Instance
  - Activation Code to Activate Externally Managed Product Instance
  - Activate a Product Instance with Further Inputs
Onboard Devices to Security Cloud Control
- Secure ASA Onboarding Methods
- Secure Firewall Threat Defense Onboarding Methods
- On-Premises Firewall Management Center Onboarding Methods
- Meraki Security Appliance Onboarding Methods
- Cisco IOS Device Onboarding Methods
- Secure Firewall Chassis Manager Onboarding Methods
- AWS Virtual Private Cloud Onboarding Methods
- Cisco Umbrella Organization Onboarding Methods
Next Steps
- Additional Configuration Assistance
Additional Documentation and Support
- AI Defense Documentation
- Firewall in Security Cloud Control Documentation
- Multicloud Defense Documentation
- Secure Access Documentation
- Secure Workload Documentation
- Customer Support Resources
Cisco Support Access
- Cisco Support Access to your Organization
- Enable Cisco Support Access

Activity Onboard

Integrate an Identity Provider Step 3: Provide SAML metadata from your IdP to Security Cloud

Last updated: Jul 16, 2025

Step 3: Provide SAML metadata from your IdP to Security Cloud

After you've configured your identity provider's SAML application with SAML metadata from Security Cloud Control, the next step is to provide the corresponding metadata from your SAML application to Security Cloud Control. See Identity Service Provider Instructions for steps specific to several commercially available identity service providers.

Before you begin

To complete this step, you need the following metadata for the SAML application on your identity provider:

Single Sign-on Service URL
Entity ID (Audience URI)
Signing certificate in PEM format

Depending on how your identity provider provides data, you can either upload a metadata XML file that contains all this information, or manually enter (copy and paste) the individual SAML URIs and upload the signing certificate. See Identity Service Provider Instructions for steps specific to several commercially available identity service providers.

Procedure

1

In Security Cloud Control, on the Identity Providers > Edit identity provider > SAML metadata page, do one of the following:

If you have an XML metadata file from your identity provider, select XML file upload and upload the XML file.
Otherwise, click Manual configuration and enter the endpoints for the Single Sign-on Service URL, Entity ID, and upload the public signing certificate provided by your identity provider.

2

Click Next.

What to do next

Next you'll test your integration by initiating an SSO from Security Cloud Control to your identity provider.

Previous topic Step 2: Provide Security Cloud SAML metadata to your identity provider Next topic Step 4: Test your SAML integration