MangoApps as IDP

MangoApps can be configured as an IDP, i.e. if your applications understands SAML then it can be configured to authenticate users via MangoApps. Below are the steps to perform the configuration:

 

Configuring SAML Apps in MangoApps

1. Navigate to the Admin Portal.

2. Navigate to Integration > SAML Apps.

3. Click on tab ‘Create a New Tab

4. Below are the details of each fields that you need to add

a. Name: Name Of The SAML identifier, this is to identify the SAML application in MangoApps admin, it has no other significance

b. SAML 2.0 Endpoint: This should be the end point of the SAML service provider, where assertion will be sent via HTTP POST

c. Issuer URL/Identifier: Unique identifier of the SAML Application

d. NameID: The NameID of saml that may contain “Email/samAccountName/EmpId”

e. Sign Response/Assertion: Assertion should be Signed/Unsigned or not

f. Algorithm: If Signed, the algorithm of the Signature

 

5. Once the application is registered, you will need to get Matadata URL

http://mangospring.ms.dev/saml/metadata.xml?id=2

SAML Endpoints

Once you have configured your domain as a SAML identity provider, the endpoints available for use

1) MangoApps SAML 2.0 Single Sign-On URL

https://<your_mangoapps_domain>/saml/auth

2) MangoApps SAML 2.0 Metadata

https://<your_mangoapps_domain>/saml/<app_id>/metadata.xml

3) IDP initiated Single Sign-On URL

https://<your_mangoapps_domain>/saml/<app_id>/idpinitiatedsignon

 

Below is a short demo of the configuration using two MangoApps domain:

1) Configured SAML IDP/Provider in https://hub.mangoapps.com

2) Configured SAML SP/Consumer in https://siddee.engageexpress.com

3) Any user who can login to hub.mangoapps.com or have a valid session in browser can login to https://siddee.engageexpress.com

(Visited 182 times, 1 visits today)
Tagged: