You can create a custom connector that allows users to authenticate to the CloudAccess appliance through a SAML federated connection. To create this federation, you must create a custom SAML In connector.
To allow the appliance to be a SAML 2.0 service provider, you can create a SAML 2.0 Inbound connector using the Access Connector Toolkit. After you export the connector and import it in the appliance, the SAML2 In connector appears as an identity source. You configure an instance of the identity source with information about an appropriate identity provider to enable the service provider functionality of the appliance, and to allow the identity provider to send a SAML token to the appliance using the SAML 2.0 POST profile.
After you configure the SAML2 In identity source, the appliance login page provides a link to the login page of the SAML 2.0 identity provider, located to the left of the user name and password login options. The SAML 2.0 users log in through the identity provider to gain access to the appliance landing page.
For more information, see Creating a SAML 2.0 Inbound (SAML2 In) Connector Template
in the CloudAccess Connectors Guide.