SET UP & MANAGING
      Back to home
      1. Help Center
      2. SET UP & MANAGING

      SAML Single Sign On (SSO) Configuration

      Single Sign On (SSO) is the process of authentication that allows a user to login multiple software products with a single ID, usually a combination of an email address and a password. 

      SAML Single Sign On is available for Enterprise packages on Clinked.

      How to enable SAML SSO

      SAML (Security Assertion Markup Language) is a standard method of exchanging authentication and authorisation data between an Identity Provider (IdP) and an external service provider, in this case Clinked.

      In order to setup SAML Single Sign On, a configuration needs to done on the IdP based on the details provided by Clinked, export a metadata file, and upload said file into Clinked's SSO settings to link two services. 

      1. Navigate to Security and Authentication tab in Account Settings
      2. Scroll down to locate SAML Single Sign On
      3. Press the toggle to activate
      4. Configure the IdP based on the provided details to produce a metadata file
      5. Upload the metadata file in the designated area
      6. Save the desired behaviour settings

      If the metadata file is configured correctly, following the successful update of the file, SAML SSO will be setup and portal members will be able to login using their existing credentials .

       

      How to enable additional SAML SSO configurations

      Clinked offers a solution to set up multiple SAML SSO configurations, which allows the flexibility of managing the login of different set of members via different configurations. 

      Keep in mind that the main SAML SSO configuration will be the primary login method and additional configurations will have behaviour setting limitations.

      1. Navigate to Security and Authentication tab in Account Settings
      2. Scroll down to locate SAML Single Sign On
      3. Press the toggle to enable (if not enabled yet)
      4. Click the "+ NEW" tab to activate the additional SSO configuration 
      5. Type an alias for the new configuration and save (alias will be applied to configuration details)
      6. Configure the IdP based on the provided details to produce a metadata file
      7. Upload the metadata file in the designated area
      8. Save the desired behaviour settings

      If the metadata file is configured correctly, following the successful update of the file, SAML SSO will be setup and portal members who are subject to different member management service will be able to login using their existing credentials. 

       

      Attributes

      Attributes are specific data points which are used to authenticate and identify the user. Below is a list of attributes needed to setup a SAML SSO configuration in Clinked.

      Permission Account level permission assigned to all new members. Default value is "read". Valid values are "read", "contributor", "administrator"
      Group New members are assigned to the provided group. Please provide the group URL (not the name). The group URL can be found in group settings or can be copied from the browser's URL bar
      Group Permission Group level permission assigned to all new members. The Default value is "read". Valid values are "read", "contributor", "administrator"
      Phone Number Displayed in member profile
      Job Title Displayed in member profile

      FirstName and LastName attributes are mandatory to use the Just-in-Time Provisioning (JIT) feature.