Configuring Single Sign-On on HENNGE ONE
For HENNGE ONE, you can configure the SAML settings for each individual tenant. By configuring an access policy group where SAML is enabled, the users belonging to the group can perform SAML-based login.
Access the HENNGE Access Control's management screen.
On the left pane, select [Connected Services], and then click [Add New Service].
Click [Custom], and then configure the fields as shown below referring to "SAML Coordination Settings" in your "Tenant Information" at this site.
Item name on HENNGE | Value to be specified |
---|---|
Label | Specify any service provider name. |
ACS URL | Copy the Response URL (Assertion Consumer Service URL) from "SAML Coordination Settings" in your "Tenant Information" at this site, and then paste it into this field. |
Entity ID | Copy the Entity ID from "SAML Coordination Settings" in your "Tenant Information" at this site, and then paste it into this field. |
Signing key | 2048-bits (Recommended) |
Name ID | user.email |
Others | (Omissible) |
Click [Next].
If a user's first and last names are to be synchronized during single sign-on, click [Add new attribute row], and then configure the settings as follows:
Otherwise, proceed to step 6. No configuration is necessary.
Attribute | Value |
---|---|
givenname | {user.given_name} |
surname | {user.family_name} |
Click [Submit].
On the "Metadata" column for the added service provider, click [Download].
Open "SAML Coordination Settings" of your "Tenant Info" at this site on a different screen of your web browser.
Click [Set as Metadata].
Click [Select File], and then upload the XML file downloaded on step 7.
Give users access permissions to access the service provider.
To give users access permissions to access the service provider
On the left pane, click [Access Policy Group].
Click the Edit icon for the access policy group to which users to be allowed to use SAML-based login belong.
To create a new access policy group, click [New Access Policy Group] and configure the group.
On "Allowed Services", select the service provider added on step 3 on Configuring Single Sign-On on HENNGE ONE.
Click [Submit].
Configure SAML Coordination Settings at this site.
Proceed to Configuring SAML Coordination Settings at This Site.