Reflectivity

How To Set up SSO for Reflectivity Team

 

Available for Reflectivity team users of Reflectivity web, Swivl Capture app 

 

SSO (Single Sign-On) authentication allows your team members to securely log into the Swivl Capture app or Reflectivity web platform with ease and simplicity. It is possible to both sign in and sign up using SSO. Teachers, coaches, and students use their institutional login and password to access their Reflectivity team account. It is a time-saving, convenient, and secure process of logging in and using Reflectivity solution.

We support all SSO providers which can act as a SAML Identity Provider. To set up SSO please forward this article to your IT department.

Make sure to use SSO sign in at https://cloud.swivl.com/sso/login or in our Swivl Capture or Reflectivity apps. 
SSO sign in Reflectivity.gif

What needs to be configured on your side

Create a new Service Provider profile with the following settings:

  1. Service Provider Name: Swivl Cloud
  2. Entity ID: https://cloud.swivl.com/sso
  3. Metadata: http://cloud.swivl.com/sso/metadata.xml
  4. You need to setup the system so that it sends us the following attributes:
    • First name
    • Last name
    • Email address
    • After you do the attributes setup, please send us the names of the attributes (e.g. FirstName/LastName/Email) 

Information we need from you as the Identity Provider:

  1. Identity Provider Name (example: TTU)
  2. Email domain (example: ttu.edu)
  3. Entity ID (example: https://idp.shibboleth.ttu.edu/idp/shibboleth)
  4. URL to metadata.xml (example:https://idp.shibboleth.ttu.edu/idp/shibboleth)
  5. Names of the attributes (e.g. FirstName/LastName/Email)
  6. Email this information to your primary Swivl contact or to support@swivl.com

How to test the SSO connection

  1. Visit page https://cloud.swivl.com/sso/login
  2. Enter Email address in your domain and press the “Sign in” button
  3. You should be redirected to your IdP sign in page
  4. Sign in on IdP using your credentials
  5. You should then be redirected back to Swivl Teams
  6. Notify us about successful SSO connection test and we will setup attribute mapping on our side
  7. Sign in with SSO again and you should see the correct First and Last name

    Microsoft Entra ID SSO (Azure AD) integration with Reflectivity 

    • Microsoft Entra ID is the new name for Azure AD

      To configure Azure AD integration, you must be an administrator in Azure and have the Admin account (not Co-Admin) in AlertSite.

      To create an application  in Azure AD, follow the next steps:

      1. Log in to the your Azure portal as an administrator: https://portal.azure.com/

      2. Go to Azure Active Directory:

      02.png 

      3. Select Enterprise Applications:

      03.png

      4. Click New application.

      04.png

      5. On the Add an application page, choose Non-gallery application.

      6. In the Name field enter Swivl Teams. Click Add or Create.

      06.png

      7. Select Single sign on and select SAML.

      07.png

      8. On the Single sign-on page, click the edit button at the top right of the Basic SAML Configuration section. 

      08.png

      9. Under basic SAML configuration section, perform the following steps:

      09.png

      10. Click the edit button next to User Attributes & Claims and configure the Claims for the application:

      10.png

      11. Check and update the Claims if needed:

       

      givenname

       

      surname

       

      email address

      11.png

       

      12. Download the Federation Metadata XML file and keep it handy. You'll need this in the next step.

      12.png

      Setup SSO connection with Swivl Platform

      Information we need from you as the Identity Provider:

      1. Identity Provider Name (example: TTU)
      2. Email domain (example: ttu.edu)
      3. Send us URL to metadata.xml file downloaded on the step 12(example: https://idp.shibboleth.ttu.edu/idp/shibboleth)
      4. Email this information to your primary Swivl contact or to support@swivl.com

       

      How to test the SSO connection:

      1. Visit page https://cloud.swivl.com/sso/login
      2. Enter Email address in your domain and press the “Sign in” button
      3. You should be redirected to your IdP sign in page
      4. Sign in on IdP using your credentials
      5. You should then be redirected back to Reflectivity (Teams)
      6. Notify us about successful SSO connection test and we will setup attribute mapping on our side
      7. Sign in with SSO again and you should see the correct First and Last name.

       

    OneLogin SSO connection with Reflectivity (Teams)

    • Configure OneLogin

      1. Log in to the OneLogin Dashboard, and click in the top menu Applications > Add App
      2. Search for SAML, and select SAML Custom Connector (Advanced)
      3. Specify Display Name “Teams” and press Save
      4. Go to the SSO tab and copy the value for Issuer URL
      5. Go to the Configuration tab, fill the following fields and press Save:
        • Audience (EntityID): https://cloud.swivl.com/sso
        • Recipient: https://cloud.swivl.com/sso/login_check
        • ACS (Consumer) URL Validator: ^https:\/\/cloud\.swivl\.com\/sso\/login_check$
        • ACS (Consumer) URL: https://cloud.swivl.com/sso/login_check
        • Login URL: https://cloud.swivl.com/sso/login
        • SAML initiator: Service Provider
        • SAML nameID format: Email
      6. Go to the Parameters tab:
        • Field name: Email
        • Include in SAML assertion: yes
        • Value: Email
        • Field name: First Name
        • Include in SAML assertion: yes
        • Value: First Name
        • Field name: Last Name
        • Include in SAML assertion: yes
        • Value: Last Name
        • press “+” button, fill the following fields and press Save:
        • press “+” button, fill the following fields and press Save:
        • press “+” button, fill the following fields and press Save:

      Email this information to your primary Swivl contact or to support@swivl.com

      1. Email domain or team name
      2. SSO provider: OneLogin
      3. Issuer URL

All possible sign in options

Check out other possible sign-in options in this article: What Sign-In Options Do I Have?

Updated

Was this article helpful?

4 out of 7 found this helpful

Have more questions? Submit a request

Comments

0 comments

Please sign in to leave a comment.