Setting Up SSO to log in the Monterosa platform
Introduction to SSO with SAML
Single Sign-On (SSO) is a convenient authentication method that allows users to access multiple applications or services using a single set of credentials. SSO simplifies the login process and enhances security. On the Monterosa platform, we offer SSO integration using Security Assertion Markup Language (SAML).
SAML is an XML-based framework that facilitates secure communication between the identity provider (IdP) and service provider (SP). In this context, the Monterosa platform acts as the SP, and your organisation's IdP manages user authentication.
This document provides step-by-step instructions on how to set up SSO with SAML on the Monterosa platform.
How to set up SSO
1. Contact Support
Initiate the SAML SSO setup process by sending an email to support@monterosa.co.uk to express your interest. Our support team will provide you with configuration details and guide you through the entire process.
2. Setup your Identity Provider
Once you've initiated the process, you can start setting up SAML SSO on your end. To do this, you’ll need to use the following configuration parameters provided by the Monterosa support team:
ACS URL
Entity ID
Please make sure to set Name ID format to Email and map the following user attribute fields:
First name ->
firstNameLast name ->
lastName
Once successfully configured, you'll be able to acquire the following required details:
Company's Entity ID: This is a unique identifier for your organisation provided by your IdP.
Email Domain: The domain associated with your organisations email addresses (e.g.
yourcompany.com).Sign-in URL: The URL where users will be redirected to initiate the SSO login process.
x.509 Signing Certificate: A certificate used to sign SAML assertions and ensure their integrity during transmission.
3. Send Your Configuration Information Back
Please send the required details to us at support@monterosa.co.uk. Those details include:
Your Company's Entity ID
Email Domain
Sign-in URL
x.509 Signing Certificate (you may need to provide the certificate file or detailed information on where to retrieve it).
Our support team will review your request and begin the setup process. Please allow some time for this process to be completed.
4. Confirmation of Setup
Once the SSO setup is complete, you will receive a confirmation email from our support team. This email will include instructions on how to test the SSO integration and ensure it is functioning correctly.
Common Questions
Can I have both 2FA and SSO enabled at the same time?
Monterosa supports either Two-Factor Authentication (2FA) or SSO. You can choose to enable either one or the other security features to enhance user login security.
Does the process for inviting users to the platform change when using SSO?
The process for inviting users remains unchanged when using SSO. You can still invite users to the platform, and they will go through the SSO login process when accessing Monterosa services.
Do SAML accounts automatically map to existing user accounts for the same email address?
Yes, SAML accounts will automatically map to existing user accounts if they share the same email address. This ensures a seamless transition for users who have been using Monterosa's platform before SSO was implemented.
If you have any further questions or encounter issues during the SSO setup process, please do not hesitate to contact our support team at support@monterosa.co.uk.