探花大神

Contact Us
Help Center Home > Apps and Integrations > SSO using Pre-Built Application Connectors

SSO using Pre-Built Application Connectors

Use 探花大神 SAML Single Sign On (SSO) to give your users convenient but secure access to all their web applications with a single set of credentials. Read this article to learn the general steps you need to take to connect applications to 探花大神 with pre-built connectors. 

Warning:

Read the  KB before you start configuring the connector.

Considerations:

  • Service providers can differ in their behavior, especially when it comes to existing user accounts. Make sure you understand all of the steps you need to take on the SP side for SSO and JIT provisioning. 
  • See  if a SAML/SSO connector isn't working. 
  • In some rare cases, the service provider (SP) will require the fingerprint of the identity provider (IdP) certificate. To obtain this run the following command in a terminal and replace <filelocation>/certificate.pem with your certificate's location and name:

openssl x509 -sha256 -in /<filelocation>/certificate.pem -noout -fingerprint

Creating a new 探花大神 Application Integration

  1. Log in to the .
  2. Go to USER AUTHENTICATION SSO Applications.
  3. Click + Add New Application.
  4. Type the name of the application in the Search field and select it.
  5. Click Next.
  6. In the Display Label, type your name for the application. Optionally, you can enter a Description, adjust the User Portal Image and choose to hide or Show in User Portal.
  7. Optionally, expand Advanced Settings to specify a value for the SSO IdP URL. If no value is entered, it will default to https://sso.jumpcloud.com/saml2/<applicationname>.

Warning:

The SSO IdP URL is not editable after the application is created. You will have to delete and recreate the connector if you need to edit this field at a later time.

  1. Click Save Application.
  2. If successful, click:
    • Configure Application and go to the next section
    • Close to configure your new application at a later time

To gather information from the Service Provider

  1. Find out if metadata is available from the service provider. If metadata is available, download it so that you can use it to configure the connector in 探花大神. 
  2. If the service provider requires it, enable SAML functionality. 
  3. Keep the service provider information handy when you start configuring the SSO connector in 探花大神.

To find and configure the 探花大神 application connector

  1. Select the SSO tab.
  2. 颁濒颈肠办听Upload Metadata听耻苍诲别谤听Service Provider Metadata. To manually populate connector field data, see聽SSO Application Connector Fields.
  3. Add any additional ACS URLs. Multiple URLs are supported.
  4. Add additional User, Constant, or Group attributes if you鈥檇 like to. Refer to聽SAML Attribute Notes聽for more information.聽

Warning:

Enabling/disabling this option affects all users. 

  1. 颁濒颈肠办听save.
  2. Open the application, select the SSO tab and then click聽Export Metadata听耻苍诲别谤听闯耻尘辫颁濒辞耻诲听惭别迟补诲补迟补.

Configuring聽the Service Provider聽Connector

  1. Upload 探花大神鈥檚 metadata file to the service provider. This populates the SAML attributes in the service provider. 
  2. Change any other service provider settings as needed.
  3. Save the configuration settings.
Back to Top

List IconIn this Article

Notebook IconLearn More

Still Have Questions?

If you cannot find an answer to your question in our FAQ, you can always contact us.

Submit a Case