Documentation

Table of Contents 


Other Resources


 

 

Introduction

Use this guide to integrate a web proxy with SecureAuth IdP v9.2 and later.

 


Prerequisites

Ensure an established proxy server is up and running.



SecureAuth IdP configuration steps

These configuration settings must be completed on each realm that uses the proxy, and on the Admin realm (SecureAuth0).

System Info

WSE 3.0 / WCF Configuration

1. Select False from the following dropdowns:

  • Certificate Use WSE 3.0
  • Telephony Use WSE 3.0
  • SMS Use WSE 3.0
  • Push Use WSE 3.0
  • Geo-Location Use WSE 3.0
  • SecureAuth Threat Service Use WSE 3.0
  • Trx Use WSE 3.0

2. Set the corresponding URLs as follows:

  • Certificate URL – https://cloud.secureauth.com/certservice/cert.svc
  • Telephony URL – https://cloud.secureauth.com/telephonyservice/telephony.svc
  • SMS URL – https://cloud.secureauth.com/smsservice/sms.svc
  • Push URL – https://cloud.secureauth.com/pushservice/push.svc
  • Link-to-Accept URL – https://cloud.secureauth.com
  • Phone Fraud Service URL – https://cloud.secureauth.com/fraudprevention/api/v1/phoneprofile
  • Geo-Location URL – https://cloud.secureauth.com/ipservice/ipgeolocation.svc
  • SecureAuth Threat Service URL – https://cloud.secureauth.com/ipservice/ipevaluation.svc
  • Trx Log Service URL – https://cloud.secureauth.com/trxservice/trx.svc

Proxy Server Configuration

3. Select True from the Use Proxy Server dropdown.

4. Set the Proxy Server Address to the proxy's IP Address or FQDN.

Accepted IP address formats

IP addresses are accepted in following formats, with multiple entries separated by a comma:

  • Specific IP address: e.g. 72.32.245.182
  • CIDR Notation: e.g. 72.32.245.0/24
  • IP range: e.g. 72.32.245.1-72.32.245.254 

Multiple formats can be used on same line

The following example entry is valid: 72.32.245.182,72.32.245.0/24,72.32.245.1-72.32.245.25

5. Set the Proxy Server Port to the TCP port on which the web proxy server is configured to respond, e.g. 8080

6. Provide the Proxy Username if the proxy requires authentication.

7. Provide the Proxy Password if the proxy requires authentication.

IP Configuration

8. List the proxy IP Address in the Proxy IP List field.

NOTE: Refer to accepted IP address formats in the box above.


9. Click Save once the configuration is complete and before leaving the System Info page to avoid losing changes.

10. Click to edit Web Config file

 

Web Config Editor

11. Search for wse3IP – there should be two lines; set them to:

<add key="wse3IP" value="False" />
<add key="wse3IPEvaluation" value="False" />


12. Click Save once the configuration is complete and before leaving the Web Config Editor page to avoid losing changes. 


Related documentation