JumpCloud as IDP


Step 1: Setup JumpCloud as Identity Provider

  • Log in to your JumpCloud Administrator account.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP),login page
  • Go to SSO tab and click on + icon given on the page for adding a new SSO app.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP), new SSO
  • Click on the Custom SAML App button.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP), Custom App
  • On the New Application page, provide a name and description (optional) for your app and then go to the SSO tab.

    Step 1.1: Import SP Metadata File

  • Download SP Metadata file from SP Information tab of the plugin.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP), JumpCloud Download MetaData
  • On the JumpCloud New Application page, in the field IdP Entity ID, enter a unique value of your choice.
  • Now, click on the Upload Metadata button and upload the SP Metadata file.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP), SP Info
  • Enter details manually from the SP Information tab.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP), JumpCloud-Manual Configuration
    Fields to be filled in JumpCloud Corresponding details to be copied from the plugin
    IdP Entity ID Enter a unique IdP Entity ID of your choice
    SP Entity ID SP Entity ID/ Issuer
    ACS URL ACS URL
    SP Certificate Certificate (Download the file and upload here)

Step 1.2: Attribute Mapping

  • Scroll down to the Attributes section and click the add attribute button.
  • In the left-side input field provide Attribute Name to be sent in SAML assertion and, select the appropriate attribute value from the dropdown given on the right side.
  • For example, below we have provided userName as attribute and selected username from the dropdown. Similarly add all the attributes you wish to provision to service provider.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP), Attribute Mapping

Step 1.3: Group Mapping

  • In the Group Attributes section enable the checkbox and provide the group attribute name.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP), Group Mapping
  • Go to the User Groups tab. Here you can select which groups will have access to this SSO app. This is an important step to allow users to perform SSO with JumpCloud.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP), Group Mapping
  • Click on the activate button given at the bottom and then click on Continue in the confirmation dialog box.
  • On the SSO page, select the checkbox given in front of the newly created application and click on the export metadata button. IDP metadata file will be downloaded.
  • SAML Single Sign-On (SSO) using JumpCloud (IdP), Export Metadata