Help CenterTo get started with SAML integration, we need a few pieces of information from your technical team.
- To start, we need to know which user types will be authenticating with SSO (Candidates, Administrators, Employers)
- Once this is established, we will need metadata to register on our side for each audience defined above. Please provide that metadata.
- Please identify which value will be used as the unique identifier during login for a user (i.e. username, email, ID, usercode, etc.)
- Please indicate if you will be using an Azure environment.
Once we have this information, we will send the appropriate metadata for these user types to be registered on your side.
Notes about our SAML integration:
- All users must enter the system with two values defined, at a minimum, and these must be defined in the body of the XML in a SAML Attribute Statement:
- Unique Identifier
- Email Address
- We allow additional attribute mapping to the user record upon authentication, and we highly recommend you define first and last name on each record entering our system. If desired, you can define as many other profile attributes as you'd like.
Azure users: If you are configuring for an Azure environment, a single metadata must be shared for all users. Azure does not generate unique Entity ID keys within the metadata for different user groups, which means our system has no way of identifying which group they belong to during login.
Please configure your group in Azure to contain all user types; we can further limit their ability to access different GradLeaders URLs via attributes during login as mentioned above.