Banyan Solution - Confluence - SonicWall Cloud Secure Edge Documentation

Banyan Solution - Confluence

Updated on Jul 18, 2023

Overview
Prerequisites
Setup
Test

Overview

Prerequisites

In order to set up this integration, you need will need administrative access to your hosted service, with the ability to add an external SSO Provider.

We also assume you have already created the application integration called “Banyan TrustProvider” following our instructions to set up an IdP as your Identity Provider.

Setup

Step 1. Create a Policy

Navigate to Secure Access > Policies > Create New Policy and create a new Policy using the template Basic Authorization Policy for Users.

Name the policy and be sure to select the option that specifies this policy is intended for Web - for accessing HTTP services via web browser.

Also set the policy attributes for minimal controls:

Only allow access from the following role: ANY
Only allow users and devices with the following Trust Levels: No Trust Level - ignore TrustScore (or a Trust Level according to your organization’s security requirements)

Step 2. Register the Service

Navigate to Manage Services > Hosted Services > + Register Service. Then, create a new Service using the template Web Service for Users.

Enter the service name and description, and then select an icon.

Select the cluster where the applicable Access Tier is located.

Set the attributes:

enter the domain name for this service (such as, Confluence.corp.example.com) and leave the port as 443 for HTTPS; this is the URL that users enter in their web browser to access the service
set the enforcement model to Site-based and select the applicable Access Tier
enter the Backend Domain and Port to which the Access Tier will forward traffic to; in this guide, we use Confluence and port 80.
since the default Confluence application doesn’t use TLS we can leave the other extra checkboxes unset

Attach the policy we had previously created in Step 1, and then set enforcement mode to Enforcing.

Click Register Service.

Now, you can navigate to Confluence and authenticate. You will be taken to your Identity Provider to login while, behind the scenes, Banyan is evaluate device posture and enforcing your security policies.