SAML Authentication

Security Assertion Markup Language (SAML) is an open standard for exchanging authentication and authorisation data between service providers and identity providers. SAML allows you to log into multiple applications, using the same login credentials.

Configuring SAML

SAML authentication must be configured in both Flex Core, and in the identity provider that maintains identity information for the users.

Configuring in Enterprise

To configure SAML authentication for a particular account, click the Metadata tab in the Account Details screen (see Accounts for more information about this page):

Click Edit, and expand the External Authentication field to enter the SAML configuration details:

  • The SAML IDP Display Name is the name to be displayed on the login page.
  • The SAML IDP metadata URL identifies the location of metadata in the DNS. This information is used to configure the connection and behaviour based on the metadata of the Identity Provider.
You can add as many Identity Providers as you want.

Configuring in the Identity Provider

Each specified Identity Provider must be configured. All SAML-compatible Identity Providers are supported.

The configuration of each Identity Provider varies, but they share particular characteristics:
  • SAML 2 must be enabled.
  • A callback URL must be specified, which corresponds to the particular service (MAM, Reviewer and so on) for which you wish to enable SAML.

Was this article helpful?