Rublon

Secure Remote Access

By

Last updated on February 15, 2024

Overview

The purpose of this document is to introduce Rublon Authentication (Rublon Access Gateway) into the Freshdesk authentication process and enable the Two-Factor authentication process for Freshdesk users. To be able to achieve that, it is required to create a Rublon Access Gateway application as well as configure several SSO settings on the Freshdesk administration panel site. All needed steps will be described within this document.

Supported Authentication Methods

Authentication Method Supported Comments
Mobile Push N/A
WebAuthn/U2F Security Key N/A
Passcode N/A
SMS Passcode N/A
SMS Link N/A
Phone Call N/A
QR Code N/A
Email Link N/A
YubiKey OTP Security Key N/A

Installation

Required Components:

  1. Rublon Access Gateway

Download the Rublon Access Gateway certificate

  1. Sign in to Rublon Access Gateway
  2. Go to Applications → All applications
  3. Click the Download Certificate button
  4. You will need the certificate in G Suite SSO settings and when adding app to Rublon Access Gateway.

Setup the Rublon Access Gateway integration

  1. Login to Freshdesk and choose Admin Panel from the Left bar.
  2. Select Security from the General Settings group:
  3. Set the admin who will be getting notifications and click Single Sign On (SSO):
  4. Turn on Single sign-on:
  5. Choose SAML SSO from the drop down list in Single sign-on section.
  6. Fill the required data from Rublon Access Gateway
    1. For Entity ID provided by the idP, copy the value from Rublon Access Gateway metadata – Entity ID
    2. For SAML SSO URL, use the SSO URL from Rublon Access Gateway
    3. Choose Only Signed Response in Signed Options
    4. Copy Logout URL from Rublon Access Gateway to Logout URL
    5. Open the downloaded certificate and copy the value to Security  certificate
  7. Set Signing Options as Only Signed Response
  8. Save the changes.

Force SAML authentication

In Step 4 in the previous section you can choose which methods are allowed to use. Set all to off and leave Single sign-on turned on. Make sure you have correctly configured SSO before you turn off other sign in methods

Add an application to Rublon Access Gateway

  1. Login into your Rublon Access Gateway instance.
  2. Open the Applications tab.
  3. Select the Add application subtab
  4. Fill the form with data where  Freshdesk URL is https://YOUR_DOMAIN.freshdesk.com (where YOUR_DOMAIN is your domain registered within Freshdesk):
    1. Application name for you to recognize it in the system
    2. EntityID:
      1. Go to YOR_DOMAIN.freshworks.com/security and Sign in
      2. Choose the Login Method in Single sign-on
      3. Copy from the Entity ID from Service Provider(SP)
    3. Assertion Consumer Service:
      1. Go to YOR_DOMAIN.freshworks.com/security and Sign in
      2. Choose the Login Method in Single sign-on
      3. Copy the following from Assertion Consumer Services:
    4. NameID format: urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
    5. NameID attribute: your authentication source attribute name which will return your mail in Freshdesk.
    6. Check Sign Response
    7. Add the downloaded certificate from Rublon Access Gateway in the Certificate for singing field
    8. Save the changes.

Check the integration with Freshdesk

  1. Go to your domain login website e.g.: “my_domain.freshworks.com

Provide your login and password

Please fill in with your organization’s account credentials(Active Directory, LDAP).

Choose one of the available methods to complete Rublon second factor authentication

Get access to Freshworks home page

From this page you can move to your Freshdesk site.

Troubleshooting

If you encounter any issues with your Rublon integration, please contact Rublon Support.

Related Posts

Rublon Access Gateway

Rublon Access Gateway – Integrations