Generic SAML Server
To configure the SSO authentication with a generic SAML Identity Provider:
-
Go to Global Settings > Identity & Access.
-
Under SSO Authentication, click Set up single sign-on.
-
The SSO
Single Sign-On (SSO) - A session/user authentication process that permits a user to enter one name and password in order to access multiple applications. Authentication wizard opens.
-
Select Generic SAML Server.
-
Provide a title to the integration you are creating, and click Next.
-
Follow the wizard instructions to complete the configuration.
-
Verify the ownership of your domain to make sure successful identification for all the users that belong to your organization:
-
Copy the DNS record value.
-
Enter the Value to your DNS server as a text record.
-
Below Domain(s), enter one or more email domains that your company uses and click [+] after each one.
Note - After three to five minutes the DNS record propagates and is resolved.
-
When all domains show on the list, click Next.
-
-
Allow Connectivity
Copy the URLs and enter them at your identity provider's portal.
-
Configure Metadata
Upload the federation metadata XML file that your IdP provides.
-
Review the details of the SSO configuration and click Submit.
Important - Create a user group with the applicable roles and assign it to the related IdP group name or ID, which depends on the applicable identity provider, before you log out. For more information, see User Groups.