Introduction
SAML or Security Assertion Markup Language is an identification process that allows you to login into multiple websites by just using one login credential. This creates ease of access and managing multiple login details for emails, CRMs, and other services will be more efficient.
This guide is separated into 2 major portions and each will need to be completed for the feature to work seamlessly for your JustLogin account
Terms to remember:
Identity Provider (IdP) – stores and authenticates the user’s credentials and sends data to the Service Provider. An example of IdP is Microsoft Azure Active Directory
Service Provider (SP) – These are the software that we use to perform our work-related tasks, like JustLogin, SalesForce, QBO, Dropbox, etc.
NOTE: For SAML to work, the usernames must be the email address. This is the only format that the system recognizes as the unique identifier. If you need to modify the usernames in your system and is unable to do so, please contact our support team: support@justlogin.com
Part 1 – Enabling SAML on Service Provider (JustLogin)
The steps shown below is an example of how to setup JustLogin with Microsoft Azure AD
Step 1: Log in to your account
Step 2: Go to UserAdmin
Step 3: Head to the tab at the top
Step 4: Click on the SSO sub-tab
Note: If you are unable to find this, please reach out to support@justlogin.com.
Step 5: The page you will see next is similar to below:
Step 6: Toggle the slider to enable SAML
Step 7: The information on this portion is already set as a default upon enabling the SAML feature for your JustLogin account (Service Provider).
Step 8: On the right column are information that needs to be completed. These are data that can be taken from your identity provider (IdP), in this case Microsoft Azure AD
Part 2 – Setting up JLI on Microsoft Azure AD
Step 1: Log in to your Microsoft Office account as an administrator and click on the “admin” icon on the left side of the page
Step 2: Another tab will be opened, which is the admin panel.
Step 3: Click on Show All, you will see Azure Active Directory from the expanded panel. Please click on it
Step 4: The next page is Azure AD’s admin page
Step 5: Click on Enterprise Applications in the left side panel
Step 6: Click on New Application
Step 7: Click on Create your own application
Step 8: On the right-side panel, you can input the application name: JustLogin
Step 9: Click on the button at the bottom of the screen
Step 10: Once the application has been created, you will see the properties page next:
Step 11: Click on Assign users and groups – this is where you can enable the SAML/SSO for all users or groups.
Step 12: Click on Add user/group
Step 13: Click None selected
Step 14: And then on the right side, select the users whom you want to utilize the Azure AD SMAL/SSO
Step 15: Click button at the bottom of the panel
Step 16: Click button at the bottom of the page
Step 17: Now that you have assigned user/s, click on Overview
Step 18: Next is to set up SSO. Click on Setup single sign-on
Step 19: On the next page, click on SAML
Step 20: This is where we can setup SSO with JustLogin. On the Basic SAML configuration field, click on the Edit icon
Step 21: Complete the fields. Information for these fields can be found in Part 1 of this guide
- Identifier (Entity ID) – copy the information on JustLogin SSO page into this field
From JustLogin SSO setup page
Paste into Azure AD SSO setup page. After doing so, put a tick in the Default box.
- Reply URL - copy the information on JustLogin SSO page into this field
From JLI SSO page, copy
Paste into Azure AD SSO setup page. After doing so, put a tick in the Default box.
Step 22: You can leave the rest of the fields blank and click on Save
Step 23: On to the next part, download the certificate and save it in your computer
Step 24: On the fourth portion of the setup page, complete the information based on the JustLogin SSO setup page:
Copy Login URL
Paste in Identity Provider Sign-in URL on JustLogin SSO Setup page
NOTE: Please do the same for the Identity provider Sign-out URL
Step 25: For the certificate, click on the box and upload the certificate you have just downloaded
Step 26: Click on
Step 27: (Optional) Go to Properties
Step 28: You can upload JustLogin’s logo in this page, as well as copy the URL that you can share to all your users, so that users can create a shortcut into their desktop.
Once everything is set up, your assigned users will be able to access JustLogin by clicking on the All Apps icon . JustLogin will show up from the list of apps they can access without the need to input their own login details.