Integrate Tableau with WSO2 Identity Server

WSO2 Identity Server is the largest andleading Open Source Identity Management vendor in the market. If you are using WSO2 Identity server now you can easily integrate an data analytics platform like Tableau in few easy steps.

Let’s begin!. In order to do this you have to have a downloaded WSO2 IS pack and a Tableau account. The latest Identity server can be downloaded from the releases or if you have a WSO2 account you can get a WUM updated latest pack from any version( IS 5.3.0 or above).

• Tableau uses email to login to their system, hence if you want to configure it with IS we can configure email as username feature in the IS side. You can follow this document for that. If you can not achieve this in your current setup, you still can integrate Tableau with WSO2 IS. I will explain it later in service provider configurations.

Tableau is a SAML supported application. Hence we are going to use SAML as our standard protocol during the integration with WSO2 IS

• Let’s first start with configuring the SAML in Tableau side. For that you have to login as an administrator to your Tableau account.
• Go to Settings -> Authentication -> Authentication Types , here you have to enable SAML and Edit the Configuration.

Here you will be given few steps to try out.

Step 1 : Export the meta data from Tableau account, because we need this to register the Tableau application in WSO2 Identity Server as a service provider along with the certificate.

Step 2: Next you need to download the Resident IDP of WSO2 IS’s meta data file from the and export it to the Tableau step 4

Step 4: In this step you have to import the above downloaded IDP SAML meta data file and do a Test Connection. It will take the claims/attribute values from the meta data file and map them correctly to Tableau. Then we can apply the changes.

By this place we are done with Tableau configurations. Next we have to complete the WSO2 IS configurations part.

• Now open up the WSO2 Identity Server management console. As Tableau is a SAML application, we need to create a SAML Service provider application in WSO2 IS.
• Go to the Service Provider -> Add, you can register an SP application called “Tableau”
• Next you can click on the Inbound Authentication Configuration -> SAML2 Web SSO Configuration , there you will have 3 options to configure SAML. Out of them we select upload from a SAML meta data file. You can use the previously downloaded Tableau’s SAML meta data file and create a service provider.

• Furthermore, you have to import the certificate of Tableau to the client-trustore.jks/wso2carbon.jks of WSO2 IS using key tool commands and restart the server

$ keytool -import -alias tabulo -file certfile.cer -keystore client-trustore.jks

• Once the service provider created, if you edit the inbound SAML configurations it should look like below. In my case as I am using a trial version I get a big URL as the “issuer”

By this point all the configurations are complete. Now you should be able to login to Tableau via WSO2 Identity Server.

But as I mentioned in the beginning, If you can not configure Email as username you can configure the Email address as the Subject Identifier in the Service Provider claim configurations as below.

I hope now you can integrate your graphing online Tableau application easily with your existing WSO2 Identity Server.

Try this and leave your comments on this!