Sign in to Security Cloud Control
To log in toSecurity Cloud Control, a customer needs an account with a SAML 2.0-compliant identity provider (IdP), a multi-factor authentication provider, and a user record in Security Cloud Control.
The IdP account contains the user's credentials and the IdP authenticates the user based on those credentials. Mutli-factor authentication provides an added layer of identity security. The Security Cloud Control user record primarily contains the username, the Security Cloud Control tenant with which they are associated, and the user's role. When a user logs in, Security Cloud Control tries to map the IdP's user ID to an existing user record on a tenant in Security Cloud Control. The user is logged in to that tenant when Security Cloud Control finds a match.
Unless your enterprise has its own single sign-on identity provider, your identity provider is Security Cloud Sign On. Security Cloud Sign On uses Duo for multi-factor authentication. Customers can integrate their own IdP with Security Cloud Control if they choose.
To log into Security Cloud Control, you must first create an account in Cisco Security Cloud Sign On, configure multi-factor authentication (MFA) using Duo Security and have your tenant Super Admin create a Security Cloud Control record.
On October 14, 2019, Security Cloud Control converted all previously-existing tenants to use Cisco Security Cloud Sign On as their identity provider and Duo for MFA.
Note |
|
If your Security Cloud Control tenant was created on or after October 14, 2019, see Initial Login to Your New Security Cloud Control Tenant.
If your Security Cloud Control tenant existed before October 14, 2019, see Migrate to Cisco Security Cloud Sign On Identity Provider.