You can connect Paligo to JumpCloud (https://www.jumpcloud.com) for single sign on (SSO). This is only available on the Enterprise plan.
To use JumpCloud with Paligo, you need to set up JumpCloud to provide metadata to Paligo. The metadata includes the name of the user, the user's email address, and the user group that the user belongs to. The metadata describing the user group is not part of standard metadata. You must add this metadata to the SAML response.
To be able to Connect Paligo to your SSO Service you need to set up JumpCloud to integrate with Paligo.
The first stage of setting up JumpCloud to communicate with Paligo is to create a new application connector.
In JumpCloud:
-
Go to the JumpCloud console and select SSO and then add an application.
-
Select Custom SAML App.
-
In the Settings panel, apply these values (replace the your in your.paligoapp.com with the address of your Paligo instance, for example, acme.paligoapp.com).
Name
Value
Display Label
Paligo (example)
IDP Entity ID
paligo/jumpcloud/sso
SP Entity ID
https://your.paligoapp.com/saml/metadata
ACS URL
https://your.paligoapp.com/saml/acs
Samlsubject NameID
email
Samlsubject NameID Format
urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
Signature algorithm
RSA-SHA256
Attributes
Create attributes for:
user.firstname
firstname
user.lastname
lastname
user.email
email
Groups Attributes
Include Group Attribute
Checked. This option must be checked/enabled.
Groups Attribute Name
paligo.usergroup
-
Select Save.
Next, you need to Create User Groups in JumpCloud .
You should create one user group for each Paligo user group (administrators, authors, contributors, reviewers, publishers, it admins or translation managers) in JumpCloud.
In JumpCloud, you need to associate the user accounts with the user groups that you have set up for Paligo.
-
Select Users.
-
Select the user you want to add to a Paligo user group.
-
Select the User Groups tab.
-
Select the checkbox for the Paligo user group that the user should belong to.
-
Select Save user.
-
Repeat this process for each user account that needs access to Paligo.
You can now Connect Paligo to your SSO Service.
Comments
0 comments
Article is closed for comments.