JumpCloud SAML

Step-by-step guide to configure single sign-on with JumpCloud as the identity provider

This guide walks you through configuring JumpCloud as your SAML identity provider for the application you are onboarding, enabling secure single sign-on for your users. You'll learn how to set up an enterprise application, configure SAML settings to the host application. By following these steps, your users will be able to seamlessly authenticate using their JumpCloud credentials.

1. Download metadata XML

Sign into the SSO Configuration Portal, select JumpCloud, then SAML, and click on Configure.

Under Service Provider Details, click on Download Metadata XML.

Download Metadata XML

2. Create enterprise application

Login to your JumpCloud Portal. Go to SSO Applications.

Locate SSO Applications

Click on Add New Application.

Click on Add New Application

In the Create New Application Integration search box, type Custom SAML App, and select it from the drop down list.

Give your app a name, select your icon (optional) and then click on Save.

Create and save a new application integration

Click on Configure Application.

Click on Configure application

3. SAML configuration

Go to the SSO tab**.** Upload the downloaded Metadata XML (from the SSO Configuration Portal) under Service Provider Metadata→ Upload Metadata.

Upload Metadata XML under Service Provider Metadata

From your SSO Configuration Portal, copy the SP Entity ID. On your JumpCloud Portal paste it in the IdP Entity ID and the SP Entity ID field.

Copy SP Entity ID from your SSO Configuration Portal

Paste it under IdP Entity ID and SP Entity ID on JumpCloud Portal

• Similarly, copy the ACS URL from your SSO Configuration Portal. Go back to your JumpCloud Portal, scroll below to the ACS URLs section and paste it in the Default URL field.

Copy ACS URL from SSO Configuration Portal

Paste it under Default URL on JumpCloud Portal

4. Attribute mapping

In the SSO tab, scroll to find Attributes.

Locate Attributes section on JumpCloud Portal

Check the Attribute Mapping section in the SSO Configuration Portal, and carefully map the same attributes on your JumpCloud application.

Attribute mapping from SSO Configuration Portal

Attribute Mapping on JumpCloud Portal

5. Assign users

Go to the User Groups tab. Select appropriate users/groups you want to assign to this application, and click on Save once done.

Assign individuals or groups to your application

6. Upload IdP metadata URL

On your JumpCloud Portal, click on SSO. Copy the Copy Metadata URL.

Copy Metadata URL from your JumpCloud portal

Under Identify Provider Configuration, select Configure using Metadata URL, and paste it under App Federation Metadata URL on the SSO Configuration Portal.

Paste Metadata URL on SSO Configuration Portal

7. Test connection

Click on Test Connection. If everything is done correctly, you will see a Success response as shown below.

If the connection fails, you'll see an error, the reason for the error, and a way to solve that error right on the screen.

Test SSO configuration

8. Enable connection

Click on Enable Connection. This will let all your selected users login to the new application via your JumpCloud SSO.

Enable SSO on JumpCloud

With this, we are done configuring your JumpCloud application for an SSO login setup.