1) Open the “Accounts” page at https://app.entitykeeper.com/accounts and select your account as a trusted account.
2) Open "Account Settings."
3) Remember your account ID (shown in the URL). In or example below, the account ID is 435.
4) Configure an application at this step with your identity provider.
5) Enable SAML SSO (click the checkbox), populate the URL, and certificate fields with the data from your identity provider.
Note: Steps 4 and 5 are dependent on your SSO platform. Please reference your SSO provider for more guided instructions.
Just-In-Time User Provisioning
SAML authentication supports Just-In-Time User Provisioning (JIT). You need to add and define additional attributes in the SAML provider.
Add EntityKeeper as a Service Provider
You must also add EntityKeeper as a service provider with your identity provider. Adding EntityKeeper as a service provider required the following values:
FIELD | VALUE |
Service Provider Entity ID | entitykeeper.com |
Assertion Consumer Service URL | https://app.entitykeeper.com/users/auth/saml/account-id/callback |
Binding | urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST |
Named Format | urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress |