Single Sign-On
JumpCloud
This guide describes the SSO setup between NVSEP and JumpCloud.
In JumpCloud
- Create a a custom application
- Select "Configure SSO with SAML"
- Paste the
SP Entity IDvalue from your NVSEP Portal on the SSO page into theSP Entity IDfield - For ACS Url:
- For QA:
https://identity.qa.nvsep.org/saml2/idpresponse - For Prod:
https://identity.nvsep.org/saml2/idpresponse
- For QA:
- For
SAMLSubject NameID:selectemail - For
SAMLSubject NameID Format:selecturn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress - For
Sign, selectResponse and Assertion - For
Login URL, enter:- For QA:
https://portal.qa.nvsep.org/admin/login - For Prod:
https://portal.nvsep.org/admin/login
- For QA:
- Check the
Declare Redirect Endpointcheckbox - Under attributes, add the attribute mapping from the below table.
- Hit Save.
Attribute Mapping
| Service Provider Attribute Name | JumpCloud Attribute Name |
|---|---|
given_name | firstname |
family_name | lastname |
email | email |
Click the Copy Metadata URL at the top of the application page and provide to NVSEP below:
In NVSEP
- Navigate to the Integrations SSO page
- Enter the Metadata URL copied from JumpCloud
- Click Save.
Testing
After the SSO setup is complete, it is recommended to test the login in a separate browser or incognito window before logging out.