SSO Overview
Overview
Configuring SAML (Security Assertion Markup Language) lets you log in to Bronto using a configured SAML Identity Provider, instead of your password.
Configuring SAML
- To begin configuration, see your IdP's configuration documentation, the currently supported IdPs are:
-
In the Bronto app hover over your user name in the bottom left corner and select Organization Settings. Select SSO and click on configure.
-
Upload the IdP metadata from your chosen provider by dragging and dropping, or clicking the file selection field.
-
Once your metadata is uploaded, choose a name for your IdP provider. It has to be unique across your organization.
-
Choose the email domains associated with this IdP. They will be used to recognise which IdP to use for a given account. This field is prepopulated with the email domain associated with your organization.
NOTE: Each domain may only be associated to a single IdP, please ensure they do not repeat. You can add more domains by typing in the input and pressing enter.
-
Configure the mapping of your IdP provided attributes to Bronto ones. The attributes required by Bronto are First Name, Last Name, and Email. If you wish to use user role mapping you must also configure the custom:member_of attribute. Input the matching provider attribute name, as configured in your IdP, to each row. E.g. given_name -> name.
-
Press the upload and enable button to create the IdP. This will display a popup with the ACS URL, Entity ID, and Start URL you will need to configure your IdP to accept requests from Bronto. See your IdP specific documentation for more information.
NOTE: If you wish to view this information again, click on the given IdP in the IdP list.
-
Your new IdP will automatically be enabled. You may control which login methods are enabled from the Login Methods page. You must always have at least 1 login method enabled.
-
(Optional) If you wish to utilize role mapping, go to the Role Mappings page to configure the mapping. See Role Mapping documentation for more information.