Configuring SAML

Overview

To add SAML, first you need to configure a few things in your Frontegg Portal. Then you need to make sure your customers configure their identify provider.

Read below to learn how.

Enable and Configure SAML In Frontegg Portal

Step 1: Enable SAML

In your Frontegg portal settings, go to Authentication ➜ Settings ➜ Single Sign On.

Toggle the SAML switch to on and then click on the Configure button.


Step 2: Configure SAML

After clicking on the Configure button for SAML, on the following page, configure the ACS URL as the public URL of your API-GW.

Then configure the SP Entity ID. Your customers will use this value when they configure their identity provider. We recommend you use the name of your application.


Configure Customer's SAML

After configuring your SAML settings, your customer needs to configure their settings with their identity provider.

Step 1: Create New SAML Application

Your customer needs to create a new SAML application with their identity provider that they can use for this application. Below is an example using Okta.


Step 2: Enter Information

The identity provider will require certain information from customer. See the example below.


Under the SSO URL, enter your frontegg subdomain followed by /auth/saml/callback. FOr the SP Entity ID, enter the entity ID that you defined in the Frontegg portal.

Step 3: Transfer XML

The final step is transfer an XML file from the identity provider to Frontegg. To do that, first download the metadata XML from the customer's identity provider. Next, upload the XML file to the customer's Frontegg Portal.


That is it. Now you and your customer have added SAML.


Did this page help you?