NetExam SAML Single Sign-On (SSO)

The following is an overview of the steps required to configure the NetExam Web application for single sign-on (SSO) via SAML.

  1. Prepare NetExam for single sign-on (see NetExam requirements for SSO).

  2. In the Admin Portal, add the application and configure application settings.

    Once the application settings are configured, complete the user account mapping and assign the application to one or more roles. For details, see Configure NetExam in the Admin Portal (Part 1).

  3. Configure the NetExam application for single sign-on.

    To configure NetExam for SSO, contact NetExam and give them the downloaded metadata file available from the Admin Portal Application Settings page. For details, see NetExam SAML Single Sign-On (SSO).

    After you are done configuring the application settings in the Admin Portal and the NetExam application, users are ready to launch the application from the CyberArk Identity User Portal.

  4. Finish configuring application settings in the Admin Portal.

Once the application settings are configured, complete the user account mapping and assign the application to one or more roles. For details, see Configure NetExam in the Admin Portal (Part 2).

NetExam requirements for SSO

Before you configure the NetExam web application for SSO, you need the following:

  • An active NetExam account for your organization.

  • A signed certificate.

  • You can either download one from the Admin Portal or use your organization’s trusted certificate.

  • Contact information for NetExam support (to enable and test the SSO feature on your account).

Set up the certificates for SSO

To establish a trusted connection between the web application and the CyberArk Identity, you need to have the same signing certificate in both the application and the application settings in the Admin Portal.

If you use your own certificate, you upload the signing certificate and its private key in a .pfx or .p12 file to the application settings in the Admin Portal. You also upload the public key certificate in a .cer or .pem file to the web application.

What you need to know about NetExam

Each SAML application is different. The following table lists features and functionality specific to NetExam.

Capability

Supported?

Support details

Web browser client

Yes

 

Mobile client

No

 

SAML 2.0

Yes

 

SP-initiated SSO

No

 

IdP-initiated SSO

Yes

 

Access restriction using a corporate IP range

Yes

You can specify an IP Range in the Admin Portal Policy page to restrict access to the application.

Configure NetExam in the Admin Portal (Part 1)

Configure NetExam in the Admin Portal (Part 2)

Before completing this section, you must have received a Company ID from NetExam. For more information, see NetExam SAML Single Sign-On (SSO).

For more information about NetExam

For more information about configuring NetExam for SSO, contact NetExam support.