Since each identity provider is unique, we will focus on a generic SAML identity provider in this article. Although each identity provider will have different interfaces and nuances, most provide configuration metadata as a URL or downloadable file. This will display the SSO settings where you can give your SSO provider a name (required) and add details of your identity provider.Īha! products support the SAML 2.0 standard, which provides a few ways to streamline configuration. To get started, go to Settings ⚙️→ Account → Security and single sign-on and select a the SAML 2.0 provider from the Identity provider dropdown. Top Configure SSO for your Aha! account with SAML The user is redirected to the original link (if prior authentication was required). The user is granted access to your account. Your account verifies the SAML assertion and provisions new users. Once authenticated, the browser is redirected to your account with a SAML assertion. The identity provider authenticates the user. When clicked, the user's browser will be redirected to the identity providers. Your account presents the user with an additional login option (e.g. Once configured, users can authenticate with the following process: It does this by sending your Aha! account a cryptographically signed XML document confirming users' identities, along with some basic user information. Security Assertion Markup Language (SAML) is a standard protocol that gives identity providers (IdP) a secure way to let a service provider (SP) such as Aha! know who a user is. Click any of the following links to skip ahead:Ĭonfigure SSO for your Aha! account with SAML