System Surveyor supports the SAML 2.0 protocol for providing a Single Sign-on (SS0) service to customers on Enterprise, Corporate and Campus Complete plans. SAML 2.0 requires configuration on the parts of both parties involved which are:
Important: Note that System Surveyor does not currently support Just-In-Time provisioning so users must have a current account in System Surveyor to utilize SSO. Current user passwords and the forgot password service will not allow users to gain access to System Surveyor once SSO is enabled for your organization. Additionally, the organization needs to manage their respective directory.
The SAML 2.0 configuration for Identify providers may differ in implementation but will require the following information about System Surveyor. This is the information you will populate when adding System Surveyor as an application in your system.
System Surveyor needs the following information to configure SAML 2.0 SSO for your organization.
The following are examples. Below that is a table that you can fill out and send to System Surveyor via your Customer Success Manager.
| Setting | Example |
|---|---|
| Application or Client ID | 139ef58-b1ad-48eb-c8e2-a95ef122ed59 |
| Idp EntityId | https://login.microsoftonline.com/a6541cd1-2f47-1b6e-b176- 78d47c4dedb9/v2.0/.well-known/openid-configuration |
| SingleSignOnService URL | https://login.microsoftonline.com/a6541cd1-2f47-1b6e-b176- 78d47c4dedb9/saml2 |
| SingleLogoutService URL | https://login.microsoftonline.com/a6541cd1-2f47-1b6e-b176- 78d47c4dedb9/saml2 |
| X509 Certificate |
Once these are submitted to System Surveyor, it will be implemented, and customer contact will receive confirmation to test. Once validated, System Surveyor can require SSO login for client’s domain.
Trouble logging in: submit a ticket to [email protected].
