# Datawiza Cloud Management Console Configuration
# Preview
In this section, we will show you how to create an application on the Datawiza Cloud Management Console (DCMC) and generate a pair of PROVISIONING_KEY
and PROVISIONING_SECRET
for this app. This keypair is used in order for the Datawiza Access Broker to get the latest configurations and policies from the Datawiza Cloud Management Console.
# Sign Into DCMC
- Log into the DCMC.
# Create New Deployment In DCMC
Welcome to the DCMC homepage! Let's get started:
- Click the orange button
Get started
. Specify aName
and aDescription
, and clickNext
.
# Provisioning Keys
- Create your set of provisioning keys. This enables the DCMC to verify the DAB's authenticity. Specify a
Key Name
and set theExpires
field to be1 month later
.
# IdP Configuration
- Choose your
Identity Provider
from the drop down menu.
- Azure
Populate the fields of the form with the keys/values obtained from IdP Configuration Guide: Microsoft Azure AD. Also, you can use One Click Integration to configure the Azure.
- Okta
Populate the fields of the form with the keys/values obtained from IdP Configuration Guide: Okta.
- Auth0
Populate the fields of the form with the keys/values obtained from IdP Configuration Guide: Auth0.
- Keycloak
Populate the fields of the form with the keys/values obtained from IdP Configuration Guide: Keycloak.
Populate the fields of the form with the keys/values obtained from IdP Configuration Guide: Google.
- Gsuite
Populate the fields of the form with the keys/values obtained from IdP Configuration Guide: G Suite.
# Add Application
Configure your application with the following values:
App Name
:Demo App
Public Domain
:http://localhost:9772
Upstream Servers
:http://host.docker.internal:3001
Default Action
:Allow
- Visit Step5: Granular Access Control to learn more about the
Default Action
configuration option.
- Visit Step5: Granular Access Control to learn more about the
- Select
Create
.
Note that upstream sever
is the address of the application that you want to enable SSO.
- If you use the DAB in sidecar mode and your application is running on
localhost:3001
on Mac or Windows, then set upstream server tohost.docker.internal:3001
(Docker 18.03+). - If your application is running on Linux, use
ip addr show docker0
to get docker host IP (e.g.,172.17.0.1
) and then set upstream server to172.17.0.1:3001
(see this for more details).
# Note Down Provisioning Keys
Note down your PROVISIONING_KEY
and PROVISIONING_SECRET
. We will need these values later when deploying the DAB. Below, you will also find a sample docker-compose
file provided for you. Feel free to use this, or if you are looking for Kubernetes-specific instructions, visit Deploy DAB with Kubernetes.
# Summary
We have shown you how to create a deployment and an application on the DCMC and generate a PROVISIONING_KEY
and PROVISIONING_SECRET
for our app.