Configuring SSO via SAML (Security Assertion Markup Language)

1. Log in to the Admin Dashboard and navigate to the Applications section.
2. Add New Application or select an existing application to configure SSO.
3. Choose SAML as the Authentication Protocol:

• Provide the required SAML details, such as the Entity ID, SSO URL, and SAML Certificate.
• You may either upload SAML metadata directly or input configuration details manually.

5. Define Attribute Mapping: Map user attributes (e.g., first name, last name, email) to SAML attributes used by the application.
6. Assign User Access to specify which users or groups can use this SSO integration.
7. Test and Verify the integration: Log in as an end user and ensure that SSO works seamlessly with the new application.
8. Save Configuration and deploy it to your production environment.

Flow for SAML configuration

Before you begin

1. Determine the values for the following items:

• Single sign-on URL: SAML Post URL location. This is often referred to as the SAML Assertion Consumer Service (ACS) URL for the target application.
• Audience URL: The application-defined unique identifier that is the intended audience of the SAML assertion. This is often referred to as the SP Entity ID of your application.

2. Create an integration

• In the Fixiam Admin Console, go to Applications -> Apps.

3. Click Add New Application.
4. Select Custom Application
5. Select Configure SSO using SAML and click Next.
6. Provide the general information for the integration and then click Next.
7. Provide the necessary SAML settings information for your integration. Seenext page for descriptions of individual fields.

• Optional: Define additional authentication factors on Login Flow tab.

8. Click Next and your integration is now created.