| Table of Contents | ||||||
|---|---|---|---|---|---|---|
|
| Info |
|---|
About SAML Single Sign-On in SMACSZPM Single Sign-On can be setup in ZPM against any Identity Provider (IdP) which supports SAML 2.0. This guide covers the steps required to setup SAML SSO against Okta, Azure AD & ADFS IdP’s. For an exhaustive list of supported IDP’s, visit SAML-based products and services. |
| Anchor | ||||
|---|---|---|---|---|
|
...
ZPM Service Provider (SP) Metadata to your Identity Provider (IdP)
Export the SP Metadata to provide to your IdP.
...
Fill in the Single sign on URL and Audience URI (SP Entity ID) fieldsin OKTAby searching your ZPM SP Metadata file for the values in red below:
Copy the entityID value from the ZPM SP metadata to the Single sign on URL field in OKTA.
In this example the value is https://stack8-demo.smacs.stack8.com:443/saml/SSO
Copy the </md:NameIDFormat><md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location= value from the ZPM SP metadata to the Audience URI (SP Entity ID) field in OKTA.
In this example the value is https://stack8-demo.smacs.stack8.com:443/saml/metadata
...
Adding ZPM as a Service Provider (SP) in ADFS using metadata.xml file:
...
| Note |
|---|
Making changes to the OKTA applications SAML Settings (the steps completed in previous sections) will modify the IDP Metada. You must re-download the latest IDP Metadata anytime a change is made to these settings. |
Go back into ZPM and complete the SAML SSO Configuration
...