SAML IdP
The SAML IdP screen enables you to view, add, and update the IdP settings for site logins.
SAML IdP list
Accessing the screen
In the left sidebar menu, under "SETTINGS", click [External system integration] -> [SAML IdP].
Field descriptions
| Field | Description |
|---|---|
| Enable | Status of the IdP. : Enabled : Disabled |
| Login SAML IdP name | Name of the IdP. |
| Entity ID | SAML entity ID. |
| Valid until | Expiration date and time of the IdP. |
| Updated on | Date and time of last update to the IdP. |
SAML IdP editor
Accessing the screen
In the left sidebar menu, under "SETTINGS", click [External system integration] -> [SAML IdP].
On the SAML IdP list screen, click the name of the IdP you want to edit.
Item descriptions
SAML IdP editor
| Item | Description |
|---|---|
| Login SAML IdP name | Name of the IdP. To enable the IdP, check the "Enable" box and specify the required SP metadata below. |
| Login SAML IdP URI | URL that accepts authentication requests from the service provider. This is displayed as IdP metadata and can be manually configured on the SP side as an IdP URL. |
| Entity ID | SAML entity ID. |
| Encryption algorithm | Algorithm to encrypt the login data. |
| Valid until | Expiration date and time of the IdP. |
| Name ID format | Format of the name ID. |
| Use login ID | Check to allow collaboration using the Login ID. |
| Certificates | Certificate file and key used for data encryption. Click [Regenerate certificates] to generate them automatically. |
| SP metadata file | XML metadata file of the service provider. When creating a new IdP, you can omit this field by disabling the IdP. (Note: Instead of uploading a file, you can also click [Don't have config file? Please click here.] to manually enter the following data in text format.
|
| Attribute mapping | You may map a user field as a SAML attribute to distinguish between users. At least one identifier is required for SAML authentication. |
Advanced settings
| Field | Description |
|---|---|
| Login URL | Login page URL. Leaving this field blank will redirect the user to the admin panel login URL (i.e., https://(site key).g.kuroco-mng.app/management/login/login/) |
| Allow IdP initiated flow | Check this box to enable IdP initiated flow. |
Actions
| Button | Description |
|---|---|
| Update | Apply all changes made on this screen. |
| Download metadata | Download the current IdP metadata in SAML 2.0-compliant XML format. |
| Delete | Delete the current IdP. |
Support
If you have any other questions, please contact us or check out Our Slack Community.