This article lists general information for using and setting up Single Sign-On (SSO) via Security Assertion Markup Language (SAML) 2.0.
- Setting up Single Sign-on via SAML 2.0 in Meisterplan
- Identity Provider Settings
- Service Provider Data
- Completing the Setup
- Login via SSO
- Single Sign-On via SAML 2.0 allows users to log in to Meisterplan via user accounts configured with the connected identity provider.
- Please note that users also need Meisterplan user accounts to be able to log in. The same username must be used in Meisterplan and for your identity provider.
- Various SAML 2.0 compliant identity providers are supported, such as:
- Azure Active Directory (Azure AD)
- Ping Identity
- This is a self-service guide to configure SSO via SAML 2.0 in Meisterplan.
- Knowledge about SAML 2.0, SSO and the specifics of configuring your identity provider are presupposed.
- Single Sign-On in Meisterplan supports SAML 2.0 only.
- Meisterplan supports Service Provider (SP) initiated SSO only. Identity Provider (IdP) initiated SSO is not supported.
Setting up Single Sign-on via SAML 2.0 in Meisterplan
Proceed as follows to set up Single Sign-On via SAML 2.0 in Meisterplan:
- Log in to Meisterplan as an Administrator.
- Open the Settings via the main menu at the top right.
- Switch to the User Management tab.
- Click the Configure SAML toolbar button to open the Configure SAML dialog.
- Click at SAML enabled.
This will display the Identity Provider Settings and Service Provider Data sections:
Identity Provider Settings
Enter the Identity Provider Settings retrieved from your identity provider:
- Identity Provider Entity ID (this may also be referred to as the "issuer")
- SSO URL (Single Sign-On URL)
- SLO URL (Single Log-Out URL)
- X.509 Certificate (public key)
Service Provider Data
Some identity providers allow access by any service using valid credentials.
Others, however, require service providers (such as Meisterplan) to be registered with a Login Response URL and Entity ID.
In this case, depending on how this is done with your identity provider, you may either copy & paste these data from the fields displayed here or use the Download Metadata XML File link if your identity provider supports an XML import of the data.
Completing the Setup
After entering Identity Provider Settings in Meisterplan and, if required, Service Provider Data on your identity provider's side, click the Save Configuration button to complete the setup.