Page tree
Skip to end of metadata
Go to start of metadata

You can set up Nexus GO Authentication to let your users authenticate with Swedish BankID or Swedish Mobile BankID without having to set up an own contract for BankID. This article describes how to configure Nexus Hybrid Access Gateway and Nexus GO.

Expand/Collapse All

Prerequisites

 Prerequisites

No specific prerequisites.

Step-by-step instruction

 Log in to Hybrid Access Gateway administration interface
  1. Log in to the Hybrid Access Gateway administration interface with your admin user.
 Select Nexus GO as authentication method in Hybrid Access Gateway
  1. In the Hybrid Access Gateway administration interface, go to Manage System.
  2. Click Authentication Methods > Add Authentication Method...
  3. Select Nexus GO.
  4. Click Next.
  5. Enter Display Name, for example Nexus GO with Swedish BankID.
  6. You will receive Method URL, SP metadata and IDP metadata when you log in to Nexus GO.
 Make settings in Nexus GO and Hybrid Access Gateway
  1. Log in to Nexus GO.
  2. In Nexus GO you will create a method and use, for example, Swedish BankID, or an other method supported by Nexus GO.

  3. Enter the Validation URL in this format:
    https://<Access Point Domain Name>/wa/auth?authmech=<Authentication method display name>
    The URL shall be written as URL encoded, for more information click the ?-sign.

    Example: Validation URL

    For example, if the domain name is sp.test.com and the authentication method's display name is Nexus Go with Swedish BankID then the validation URL should be
    https://sp.test.com/wa/auth?authmech=Nexus%20Go%20with%20Swedish%20BankID.

  4. Click on Swedish BankID and go to the How to implement tab.
  5. On the How to implement tab you will find the Method URL. Copy it and paste it in the Method URL field in Hybrid Access Gateway, Manage System > Authentication Methods > Add Authentication Method...
  6. In Nexus GO, at Service Provider metadata, click Download to download the sp.xml file.
  7. In Nexus GO, at Identity Provider metadata, click Download to download the idp.xml file.
  8. In Hybrid Access Gateway, select the downloaded files in SP metadata and IDP metadata. Click Choose File and browse to the files (sp.xml and idp.xml).
  9. Click Next.
  10. On the next page you can select if a user that is not stored in the user storage shall be allowed to log in or not.
  11. Optional: Click Add Extended Properties. There you can select to create the user if the user does not exists in the user storage (Force create user).
  12. Click Finish Wizard.
  13. Click Publish.

This article is valid from Nexus Hybrid Access Gateway 5.11.

Related information