Skip to main content

Connect and Configure SAML Service Provider

This article guides you through the process of connecting SAML applications that you want to protect in Cloudentity.

Add SAML Service Provider

  1. Select Applications > Clients > Create client in the selected workspace.

  2. Provide a name for your service provider, pick the SAML Service Provider type, and select Create.

    Create application
  3. Upload SAML Provider Metadata.

    From the Overview tab

    From the SAML tab

    SAML metadata upload from overview
    SAML metadata upload from SAML tab

    You can provide Plain XML, File (XML-formatted), or URL from where Cloudentity can pull the metadata.

  4. Copy the SAML SSO endpoint and add it to your application.

    Copy SSO endpoint
  5. Add a SAML Identity Provider.

  6. Try it out!

Configure SAML Service Provider

  1. In Overview tab, configure basics settings for your application.

    1. Update Name and Description.

    2. Enter Privacy Policy, which is a link to application usage related policy statements (included as part of the consent screen).

    3. Enter Terms of service, which is a link to application terms and conditions (included as part of the consent screen).

    4. Enter Client Details, which is a link to details on the client application or/and company (included as part of the consent screen).

    5. Select SAVE CHANGES when you're done configuring Overview.

    Note

    In the Overview tab, you can also delete the application by selecting DELETE APPLICATION.

  2. Select the SAML tab and upload the service provider metadata. This is the description of your service provider for which Cloudentity exposes the SAML SSO login endpoint.

  3. Go to Policies and assign policies governing this application in different scenarios.

    1. Select User policy (a set of conditions for the user to access the client application).

    2. Select Machine token policy, used when the application is part of the Client Credentials (machine-to-machine) flow.

  4. Select the Endpoints tab to check the SAML SSO and Metadata endpoints of this application exposed by Cloudentity.

  5. Select the Metadata tab to identify information on the application developer or configure metadata of the application itself.