SSO
You can setup this integration as a logged in admin user in the integrations page:
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/RnkO1m8GonMvrpbd8I1V2_image.png?format=webp)
Rootly is compatible with any identity provider supporting SAML 2.0. Cause SSO can be hard to configure for beginners, we below show you how to set it up for Okta, Google and OneLogin providers.
They also might ask you some more information available below during their process:
ACS URL: https://rootly.com/users/saml/auth Entity ID: https://rootly.com/users/saml/metadata
Let's go to the Applications panel.
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/mjynSUeJh-5l1iYT6YFE9_image.png?format=webp)
Search for Rootly.
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/j5mqOZoOrL-uwtz3ZrMvC_image.png?format=webp)
Click on Add.
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/q4TWV4IV7n8nlGQi5a0VM_image.png?format=webp)
Select SAML 2.0.
No our app is created let's go back in Applications > Rootly and click View Setup Instructions:
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/o_nxHUVozA5A9fvFqyp2z_image.png?format=webp)
Finally copy field as shown below into Rootly, this information from Okta is unique to your organization.
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/LE-eG1pmTVFbsqDIUSays_image.png?format=webp)
You are all set !
You will need to access the Google Admin Console: https://admin.google.com/ac/home.
Follow screenshot steps as below:
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/gspfHYIw6htyazHY6g8qX_image.png?format=webp)
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/DmaCC-FEn0RoFXJoPlR3c_image.png?format=webp)
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/2iRs0ckMbKno1ioQ_aU40_image.png?format=webp)
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/dqSbAfewIyEa6uDahWLNK_image.png?format=webp)
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/KPn7_8bURWI9kmgGOpSnW_screen-shot-2022-09-28-at-103619-am.png?format=webp)
Make sure signed response is checked and the app ON for everyone in your org unit.
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/j_-KYfmjO7OKYLZF1DwX6_screen-shot-2022-09-28-at-100844-am.png?format=webp)
And finally let's edit the attributes mapping.
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/UFaTVR6xn_khr2UstQsGW_image.png?format=webp)
Let's configure in Rootly. You can get identity login url by clicking on TEST SAML LOGIN button.
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/_3UIuNzefClfirEoOvMuH_screen-shot-2022-09-28-at-104609-am.png?format=webp)
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/DQLkx3jSnOusU0xH_DMFB_screen-shot-2022-09-28-at-104403-am.png?format=webp)
Browse the Applications Store page and install rootly.
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/69GdxkK7Y3G4zXolMGF1M_image.png?format=webp)
Copy fields over Rootly like shown below
- Issuer URL -> Identity Provider ID
- SAML 2.0 endpoint -> Identity Login Url
- In the certificate section > View Details > X.509 Certificate -> Idp Cert
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/SAwMZStptoFIVNZ_Ijv7r_image.png?format=webp)
You are all set !
Install SSO integration through the Azure marketplace
The login url isn't the obvious one their UI is showing. Cf. https://github.com/MicrosoftDocs/azure-docs/issues/43669
In the azure portal you can find the correct login URL in
Azure Active Directory > Enterprise Apps > Search your app > Click on the app > Properties page -> User Access URL
Integrate Rippling SSO + SCIM in one click https://www.rippling.com/app-shop/app/rootly
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/o_vlby1ffy0FUlNfZWWcG_screenshot-2023-03-21-at-110727-pm.png?format=webp)
Under SSO > Search rootly and configure the app
![Document image Document image](https://images.archbee.com/8_w24B7qUsOA0oEkiqb_I/-WqmWUOVD3Ru4J6L-d_o0_screenshot-2023-04-26-at-13025-pm.png?format=webp)
Note To ensure a distinct identifier and prevent conflicts with another customer utilizing the 'JumpCloud' IDP entity ID, we recommend modifying the IDP entity ID from 'JumpCloud' to 'JumpCloud-BusinessName.' This unique identifier serves to differentiate your entity from others utilizing similar IDs within our system.
If you have SSO enabled, all other login methods such as Google, Slack, Email/Password will automatically redirect users to the SSO method instead.
If you set up SSO incorrectly, you may not be able to sign in anymore. In that case please contact [email protected] or use the lower right chat widget for live assistance.
If you need help or more information about this integration, please contact [email protected] or use the lower right chat widget to get connected with an engineer.