The “Administer Configuration SAML” role permission is required to use SAML to access Secret Server. To grant a user this permission from an administrator account:

1. Go to Admin > Roles. The Roles page appears.

2. Click the Create New button. The Role Edit page appears:

3. Type the name, such as SAML, in the Role Name text box.

4. Click to select the Enabled check box.

5. Click Administer Configuration SAML in the right side Permissions Unassigned list box.

6. Click the < button to move the permission to the other side.

7. Click the Save button. 

Click the Assign Roles link of the newly created role. The View Role Assignment page appears

Click the Role dropdown list to select the role you just created.

Click the Edit button.

On the Role Assignment page move the desired users to the Assigned list using the same method as before

Click the Save Changes button.

Once installed the Certificate needs to be exported

Export it as a Base-64 encoded X.509 (.CER)

Upload the exported CER file.