Integrate BeyondTrust Privileged Remote Access and SecureAuth Arculix

Arculix by SecureAuth allows BeyondTrust customers to securely enable efficient access to Privileged Remote Access, while providing a flexible and frictionless user experience.

This integration is based on Arculix SAML (SP-initiated) integration.

This integration requires a working Arculix test User with the Arculix mobile App that can connect to the Arculix SAML Applications portal.

Before setting up the integration, create a Group Policy in BeyondTrust Privileged Remote Access for Arculix users to authenticate to Privileged Remote Access.

For more information, please see

Configure BeyondTrust for Integration with Arculix

Go to the administrative /login interface of your BeyondTrust Privileged Remote Access instance and follow these steps:

  1. Click Users & Security, then click Security Providers.
  2. Click +ADD.
  3. Select SAML2.

Add a security provider by entering identity provider settings.

  1. Enter your desired name, such as Arculix.
  2. Refer to the Arculix documentation (link above) to obtain the Entity ID, Single Sign-on Service URL, and the Certificate.
  3. Note the information in the Service Provider Settings. This is required when configuring Arculix.
  1. Verify that User Attribute Settings match the information in Arculix.

Add a security provider by entering user attribute settings.

  1. Configure Authorization Settings to match Arculix and assign the default Group Policy.

Add a security provider by entering authorization settings.