This article describes how to integrate Evernote with RSA Cloud Authentication Service using My Page SSO.

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service using My Page SSO.
Procedure

1. Sign in to the RSA Cloud Administration Console with administrator credentials.
2. Enable SSO on the My Page portal by accessing the RSA Cloud Administration Console > Access > My Page > Single Sign-On (SSO). Ensure it is enabled and protected by two-factor authentication using a Password and Access Policy.                                                          
3. On the Applications > Application Catalog page, click Create From Template.                                                                               
4. Click Select for SAML Direct.
5. On the Basic Information page, enter a name for the configuration in the Name field and click Next Step.                                          
6. On the Connection Profile page, click the IdP-initiated option.                                                                                                                  
7. Provide the Service Provider details in the following format: 
   1. ACS URL: <Evernote ACS URL> 
   2. Service Provider Entity ID: <Evernote Entity ID>
      See the Notes section to obtain the ACS URL and Entity ID.                                                                                                            
8. In the SAML Response Protection section, choose IdP signs entire SAML response.
9. Download the certificate by clicking Download Certificate.                                                                                                                            
10. Click Show Advanced Configuration.
11.  Under the User Identity section, configure Identifier Type and Property. For example, Identifier Type: emailAddress and Property: mail.                                                                                                                                                   
12. Click Next Step.
13. Choose your desired Access Policy for this application and click Next Step > Save and Finish.                                                                
14. On the My Applications page, click the Edit drop-down list, and click Export Metadata to download the metadata.                             
15. Click Publish Changes. Your application is now enabled for SSO.                                                                                                               

Notes

• The Assertion Consumer Service URL is https://www.evernote.com/SamlConsumer.action.
• The Service Provider Entity ID (Evernote Entity ID) is https://evernote.com.

Configure Evernote

Perform these steps to configure Evernote.
Procedure

1. Sign in to Evernote admin console - https://www.evernote.com/business/AccountSettings.action.
2. Navigate to Security > Single Sign-On.                                                                                                                                                          
3. On the Single Sign-On page, provide the following details.
   1. SAML HTTP Request URL: Obtain from the metadata file downloaded from RSA.
   2. X.509 Certificate: Provide the downloaded Certificate from RSA.                                                                                                   
4. Click Save & Enable.