Skip to content

JumpCloud SAML

This guide walks you through configuring JumpCloud as your SAML identity provider for the application you are onboarding, enabling secure single sign-on for your users. You’ll learn how to set up an enterprise application, configure SAML settings to the host application. By following these steps, your users will be able to seamlessly authenticate using their JumpCloud credentials.

Sign into the SSO Configuration Portal, select JumpCloud, then SAML, and click on Configure

Under Service Provider Details, click on Download Metadata XML

Download Metadata XML

  1. Login to your JumpCloud Portal and go to SSO Applications

    Locate SSO Applications

  2. Click on Add New Application

    Click on Add New Application

  3. In the Create New Application Integration search box:

    • Type Custom SAML App
    • Select it from the drop down list
    • Give your app a name
    • Select your icon (optional)
    • Click on Save

    Create and save a new application integration

  4. Click on Configure Application

    Click on Configure application

  1. Go to the SSO tab and upload the downloaded Metadata XML under Service Provider Metadata→ Upload Metadata

    Upload Metadata XML under Service Provider Metadata

  2. Copy the SP Entity ID from your SSO Configuration Portal and paste it in both the IdP Entity ID and SP Entity ID fields on JumpCloud Portal

    Copy SP Entity ID from your SSO Configuration Portal Paste it under IdP Entity ID and SP Entity ID on JumpCloud Portal

  3. Configure ACS URL:

    • Copy the ACS URL from your SSO Configuration Portal
    • Go to the ACS URLs section in JumpCloud Portal
    • Paste it in the Default URL field

    Copy ACS URL from SSO Configuration Portal Paste it under Default URL on JumpCloud Portal

  1. In the SSO tab, scroll to find Attributes

    Locate Attributes section on JumpCloud Portal

  2. Map the attributes:

    • Check the Attribute Mapping section in the SSO Configuration Portal
    • Map the same attributes on your JumpCloud application

    Attribute mapping from SSO Configuration Portal Attribute Mapping on JumpCloud Portal

Go to the User Groups tab. Select appropriate users/groups you want to assign to this application, and click on Save once done.

Assign individuals or groups to your application

  1. On your JumpCloud Portal, click on SSO and copy the Copy Metadata URL

    Copy Metadata URL from your JumpCloud portal

  2. Configure the metadata URL:

    • Under Identify Provider Configuration, select Configure using Metadata URL
    • Paste it under App Federation Metadata URL on the SSO Configuration Portal

    Paste Metadata URL on SSO Configuration Portal

Click on Test Connection. If everything is done correctly, you will see a Success response as shown below.

If the connection fails, you’ll see an error, the reason for the error, and a way to solve that error right on the screen.

Test SSO configuration

Click on Enable Connection. This will let all your selected users login to the new application via your JumpCloud SSO.

Enable SSO on JumpCloud