Configuring SAML SSO for Samanage

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and Samanage.

Prerequisite

  1. Log in to ADSelfService Plus as an administrator.
  2. Navigate to  Configuration → Self-Service → Password Sync/Single Sign On → Add Application, and select Samanage from the applications displayed.
    Note: You can also find Samanage application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.
  3. Click IdP details in the top-right corner of the screen.
  4. In the pop-up that appears, copy the Login URL, Logout URL, Error/help URL and download the SSO certificate by clicking on the Download SSO Certificate button.
    5. IDP Details

Samanage (Service Provider) configuration steps

  1. Login to Samanage portal with an administrator’s credentials.

  2. Select Setup from the left pane.

    Screenshot

  3. Select Single Sign-On from the list of options displayed.

    Screenshot
  4. In the Login using SAML section, mark the check box against the Enable Single Sign-On with SAML field.

  5. In the Identity Provider URL field, enter the Login URL copied in Step 4 of Prerequisite.

    Screenshot

  6. Open the SSO certificate downloaded (rsacert.pem ) in Step 4 of Prerequisite and paste its content in the x.509 Certificate field.

    Screenshot
  7. Click Update to complete the configuration

  8. Copy the Login URL. Use this address to point your users to. , we will need it in later steps.

    Screenshot

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ Samanage configuration page.
  2. Enter the Application Name and Description.
  3. In the Assign Policies field, select the policies for which SSO need to be enabled.
    Note:ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy.
  4. Select Enable Single Sign-On.
  5. Enter the Domain Name of your Samanage account. For example, if you use johndoe@thinktodaytech.com to log in to Samanage, then thinktodaytech.com is the domain name.
  6. Enter the SAML Redirect URL you had saved in Step 8 of Samanage configuration.
  7. Choose the Name ID format that has to be sent in the SAML response. The Name ID format will specify the type of value sent in the SAML response for user identity verification.
  8. Click Add Application.
Note: For Samanage, single sign-on is supported only for both IDP initiated flow.
Go to Top

Copyright © 2024, ZOHO Corp. All Rights Reserved.