Pronto offers support for SAML 2.0 Single Sign-On (SSO) authentication, allowing users to securely authenticate across various applications and websites using a single set of credentials. This streamlined approach ensures convenience and enhances security for users.
This article outlines a series of steps to do the following:
- Configure Pronto as an application on Google
- Configure SAML SSO in Pronto
Pre requisite
- Pronto users with Administrator privileges can configure Single Sign-On.
Note: All Admin level tenant users can only login via Basic Authentication
Configuration in Google
- Login to Google with your admin credentials.
admin.google.com - Click on the Apps menu item, then Web and mobile apps
- Click the [Add app] drop down menu, then the {Add custom SAML app} item
1. App details
- Add an App name and description
- Example:
- App name: Pronto-Production
- Description: Pronto SAML app
- Example:
2. Google Identity Provider details
- You are presented with your SSO identity information. Click the [DOWNLOAD METADATA] button under option 1.
3. Service provider details
- For the ACS URL field use: https://app.gopronto.io/complete/saml
- For the Entity ID field use: PRONTO
- Under the Name ID section:
- For the Name ID format use: EMAIL
- For the Name ID use: Basic Information > Primary email
4. Attribute mapping
- Map the following attributes:
- First name -> user.firstName
- Last name -> user.lastName
- Primary email -> user.email
- Click the [FINISH] button
Configuration in Pronto
- Login to your Pronto tenant as the Admin.
- Click on the Settings / Authentication icon in the Main navigation menu
- Click the [Configure] button
- Under Section 2 Select your identity provider select the option: Google
- Click the Upload IDP metadata XML link and upload the XML file we downloaded earlier
- Click the [Save & Verify] button
Comments
0 comments
Please sign in to leave a comment.