Go to websiteJENTIS HelpdeskJENTIS Statuspage

Enable SSO on your JENTIS Account

A Single Sign-On authentication allows users from your organization to use the same login information for multiple services. At JENTIS, you can enable SSO so all users within your organization can login to our DCP using their current credentials registered on your Identity Provider (IdP).

Single Sign-On authentication is available for customers with the JENTIS Enterprise plan. Contact your account manager for more information.

Currently, this feature supports three Identity Providers (IdPs): Ping Identity Platform, Microsoft Azure Active Directory (Azure AD), and Okta, all with the SAML protocol. If your organization uses any of these IdPs, you can follow these steps to have it connected to your JENTIS account:

Step 1 - Setup an Identity Provider

Setup an IdP (Identity Provider) for your company and register all users with email addresses you would like to use with SSO. We currently support integration with Ping Identity Platform, Microsoft Azure Active Directory (Azure AD), and Okta.

When configuring it, make sure the SAML returned to JENTIS contains a NameID field with the email address of the user

  1. Format definition = urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress

How to setup Okta:

  1. Create a developer account here: Home | Okta Developer

  2. Create SAML integration following these steps: Create SAML app integrations | Okta

  3. Create attribute statements following these steps: Define attribute statements | Okta

How to setup Ping Identity:

  1. Create a developer account here: Identity Security for the Digital Enterprise

  2. Create SAML integration following these steps: Create SAML app integrations | Ping Identity

  3. Create attribute statements following these steps: Define attribute statements | Ping Identity

How to setup Azure AD:

  1. Create an AzDo account here: Developer Program | Microsoft 365 Dev Center

  2. Create SAML Integration:

    1. Go to Microsoft Azure

    2. Open Microsoft Entra ID

    3. Add new Enterprise Applications -> Create your own applications

      1. Use Integrate any other application you don't find in the gallery (Non-gallery)

    4. Go through the getting started steps to Set up SSO and add users to your application.

Step 2 - Send the required information to JENTIS

Once your company already has an IdP (Identity Provider):

  1. Create a test user JENTIS can use to verify if the integration works;

  2. Ensure your DCP's callback URL is added to the identity provider: https://[your DCP’s domain]/sso/callback For example, https://myjentisdcp.jentis.com/sso/callback - always ending with /sso/callback.

    • on Okta, it should go under Single Sign-On URL

    • in Azure, it should go under Reply URL (Assertion Consumer Service URL)

    • in Ping Identity, it should go under ACS URLs

  3. Open a ticket on our Helpdesk sending the following information from the IdP setup:

    • Issuer (URI) - Who is issuing the identity

    • EntryPoint (URL) - Where to redirect for SSO

    • Certificate - Secret key

    • Test User credentials

How to find the necessary information on Okta

On Okta, once you enter the application you created, you’ll find this information under Sign On > Settings > Sign On methods.

Issuer (URI) = Issuer EntryPoint (URL) = Sign on URL Certificate = Signing Certificate

How to find the necessary information in the Ping Identity Platform

On Ping Identity Platform, once you enter the application you created, you’ll find this information under Configuration > Connection Details.

Issuer (URI) = Entity ID EntryPoint (URL) = Single Signon Service Certificate = Download Signing Certificate

How to find the necessary information in Azure AD

On Azure AD, you’ll find this information on Set up Single Sign-On with SAML.

Issuer (URI) = Identifier (Identity ID) EntryPoint (URL) = Login URL Certificate = Certificate (Base64)

When setup is complete, you will see a new login screen. Clicking on 'Login' will take you to your identity provider's login page. If you are a new user and logging in for the first time, you will be given the rights of an ANALYST user.

If you would like to adapt the default permission group of your users connected to your SSO provider, please get in touch with our support via Helpdesk

If your organization uses an Identity Provider that we have not yet supported, please open a suggestion ticket on our Helpdesk and inform us which IdP you would like to have integrated with the JENTIS DCP.

PreviousMaximum Storage LifetimeNextHow to administrate your users with SSO enabled?

Last updated

Was this helpful?