Hello there!

Need Help? We are right here!

support
miniOrange Support

Thanks for your inquiry.
One of our representatives will get in touch with you shortly via email.

Single Sign On (SSO) for Aha!
miniOrange provides a ready to use solution for Aha!. This solution ensures that you are ready to roll out secure access to Aha! to your employees within minutes.

Aha!

miniOrange provides secure access to Aha! for enterprises and full control over access to the application. Single Sign On (SSO) into Aha! with one set of login credentials.

miniOrange supports both IdP (Identity Provider) and SP (Service Provider) initiated Single Sign On (SSO)

Follow the Step-by-Step Guide given below for Aha! Single Sign On (SSO)

Step 1: Configure SSO for Aha!

  1. Login to miniOrange Admin Console.
  2. Go to Apps >> Manage Apps. Click Configure Apps button.
  3. Click on SAML tab. Select Aha!
  4. Enter the SP Entity ID as https://your_domain.aha.io/auth/saml/callback.
  5. Enter the ACS URL as https://your_domain.aha.io/auth/saml/callback.
  6. aha sso configuration steps

  7. In the Attributes section, enter the value EmailAddress in the Attribute Name field and select E-Mail Address from the Attribute Value list.
  8. Click on the '+' icon beside Add Attributes to add another set of attributes. Enter the value FirstName in the Attribute Name field and select the First Name from the Attribute Value list.
  9. Add another set of attributes by clicking the '+' icon and enter the value LastName in the Attribute Name field and select the Last Name from the Attribute Value list.
  10. aha sso add attribute

  11. Click on Show Advanced Settings. Against Relay State select Custom Attribute Value & enter URL.
  12. Enable Override RelayState.
  13. You can set another value for relay state depending on where you want to redirect the user after SSO.
  14. Add a new policy for Aha!.
    1. Select Aha! from Application dropdown.
    2. Select a Group Name from the dropdown - the group for which you want to add Aha! policy.
    3. Give a policy name for Aha! in the Policy Name field.
    4. Select the First Factor Type for authentication.
    5. Enable Second Factor for authentication if required.
    aha sso add policy

  15. Click on Save to configure Aha!.
  16. Click on Metadata link to download the certificate which will be required later.

  17. aha sso metadata link

  18. Login to your Aha! domain as the Account Administrator.
  19. Click on the Settings icon in the upper right corner and go to Security and single sign-on tab on the sidebar.
  20. aha sso admin login

  21. Select SAML 2.0 in the Identity Provider field and enter the details as shown:
  22. aha sso select saml in the identity provider
    NameminiOrange
    Configure usingManual Settings
    Single Sign-On Endpointhttps://auth.miniorange.com/moas/idp/samlsso
    Certificate FingerprintCopy the Thumbprint of the downloaded certificate.
  23. Open the certificate that was downloaded earlier.
  24. Go to Details.
  25. In the Field column, select Thumbprint.
  26. Copy the Thumbprint that opens in the pane by pressing CTRL+C (Right-Click won't work!).
  27. Paste the Thumbprint in the Certificate Fingerprint.
  28. Click on Enable to save the SAML SSO Settings.

Step 2: Onboard users into our system

Step 3: Login to miniOrange Account


Using Two Factor Authentication for Aha!

The most practical way to strengthen authentication is to require a second factor after the username/password stage. Since a password is something that a user knows, ensuring that the user also has something or using biometrics thwarts attackers that steal or gain access to passwords.

Traditional two-factor authentication solutions use hardware tokens (or "fobs") that users carry on their keychains. These tokens generate one-time passwords for the second stage of the login process. However, hardware tokens can cost up to $40 each. It takes time and effort to distribute them, tracks who has which one, and replace them when they break. They're easy to lose, hard to use, and users consistently report high levels of frustration with token-based systems.


Your choice of the second factor

miniOrange authentication service has 15+ authentication methods.

You can choose from any of the above authentication methods to augment your password based authentication. miniOrange authentication service works with all phone types, from landlines to smart-phone platforms. In the simplest case, users just answer a phone call and press a button to authenticate. miniOrange authentication service works internationally and has customers authenticating from many countries around the world.


For Further Details:

Guide For Single Sign On (SSO)
Aha SAML Single Sign On
We offer Security Solutions of Single Sign-On, Two Factor Authentication, Fraud Prevention and much more.
Please call us at +1978 658 9387 or email us at info@miniorange.com