Owner & Admin

How To Set up SSO

 

SSO (Single Sign-On) authentication allows your team members to securely log into the Swivl Capture app or Reflectivity web platform with ease and simplicity. Teachers, coaches, and students use their institutional login and password to access their Reflectivity team account. It is a time-saving, convenient, and secure process of logging in and using Reflectivity solution.

We support all SSO providers which can act as a SAML Identity Provider

To set up SSO please forward this article to your IT department

 

What needs to be configured on your side

Create a new Service Provider profile with the following settings:

  1. Service Provider Name: Swivl Cloud
  2. Entity ID: https://cloud.swivl.com/sso
  3. Metadata: http://cloud.swivl.com/sso/metadata.xml
  4. You need to setup the system so that it sends us the following attributes:
    • First name
    • Last name
    • Email address
      • After you do the attributes setup, please send us the names of the attributes (e.g. FirstName/LastName/Email) 

 

Information we need from you as the Identity Provider:

  1. Identity Provider Name (example: TTU)
  2. Email domain (example: ttu.edu)
  3. Entity ID (example: https://idp.shibboleth.ttu.edu/idp/shibboleth)
  4. URL to metadata.xml (example:https://idp.shibboleth.ttu.edu/idp/shibboleth)
  5. Names of the attributes (e.g. FirstName/LastName/Email)
  6. Email this information to your primary Swivl contact or to support@swivl.com

 

How to test the SSO connection

  1. Visit page https://cloud.swivl.com/sso/login
  2. Enter Email address in your domain and press the “Sign in” button
  3. You should be redirected to your IdP sign in page
  4. Sign in on IdP using your credentials
  5. You should then be redirected back to Swivl Teams
  6. Notify us about successful SSO connection test and we will setup attribute mapping on our side
  7. Sign in with SSO again and you should see the correct First and Last name

    MS Azure SSO integration with Reflectivity (Teams)

    • To configure Azure AD integration, you must be an administrator in Azure and have the Admin account (not Co-Admin) in AlertSite.

      To create an application  in Azure AD, follow the next steps:

      1. Log in to the your Azure portal as an administrator: https://portal.azure.com/

      2. Go to Azure Active Directory:

      02.png 

      3. Select Enterprise Applications:

      03.png

      4. Click New application.

      04.png

      5. On the Add an application page, choose Non-gallery application.

      6. In the Name field enter Swivl Teams. Click Add or Create.

      06.png

      7. Select Single sign on and select SAML.

      07.png

      8. On the Single sign-on page, click the edit button at the top right of the Basic SAML Configuration section. 

      08.png

      9. Under basic SAML configuration section, perform the following steps:

      09.png

      10. Click the edit button next to User Attributes & Claims and configure the Claims for the application:

      10.png

      11. Check and update the Claims if needed:

       

      givenname

       

      surname

       

      email address

      11.png

       

      12. Download the Federation Metadata XML file and keep it handy. You'll need this in the next step.

      12.png

      Setup SSO connection with Swivl Platform

      Information we need from you as the Identity Provider:

      1. Identity Provider Name (example: TTU)
      2. Email domain (example: ttu.edu)
      3. Send us URL to metadata.xml file downloaded on the step 12(example: https://idp.shibboleth.ttu.edu/idp/shibboleth)
      4. Email this information to your primary Swivl contact or to support@swivl.com

       

      How to test the SSO connection:

      1. Visit page https://cloud.swivl.com/sso/login
      2. Enter Email address in your domain and press the “Sign in” button
      3. You should be redirected to your IdP sign in page
      4. Sign in on IdP using your credentials
      5. You should then be redirected back to Reflectivity (Teams)
      6. Notify us about successful SSO connection test and we will setup attribute mapping on our side
      7. Sign in with SSO again and you should see the correct First and Last name.

       

    OneLogin SSO connection with Reflectivity (Teams)

    • Configure OneLogin

      1. Log in to the OneLogin Dashboard, and click in the top menu Applications > Add App
      2. Search for SAML, and select SAML Custom Connector (Advanced)
      3. Specify Display Name “Teams” and press Save
      4. Go to the SSO tab and copy the value for Issuer URL
      5. Go to the Configuration tab, fill the following fields and press Save:
        • Audience (EntityID): https://cloud.swivl.com/sso
        • Recipient: https://cloud.swivl.com/sso/login_check
        • ACS (Consumer) URL Validator: ^https:\/\/cloud\.swivl\.com\/sso\/login_check$
        • ACS (Consumer) URL: https://cloud.swivl.com/sso/login_check
        • Login URL: https://cloud.swivl.com/sso/login
        • SAML initiator: Service Provider
        • SAML nameID format: Email
      6. Go to the Parameters tab:
        • press “+” button, fill the following fields and press Save:
          • Field name: Email
          • Include in SAML assertion: yes
          • Value: Email
        • press “+” button, fill the following fields and press Save:
          • Field name: First Name
          • Include in SAML assertion: yes
          • Value: First Name
        • press “+” button, fill the following fields and press Save:
          • Field name: Last Name
          • Include in SAML assertion: yes
          • Value: Last Name

      Email this information to your primary Swivl contact or to support@swivl.com

      1. Email domain or team name
      2. SSO provider: OneLogin
      3. Issuer URL

    For additional help, email support@swivl.com

Swivl made it easy for me to handle my issue.
Strongly Disagree Disagree Somewhat Disagree Undecided Somewhat Agree Agree Strongly Agree

Updated

Comments

0 comments

Please sign in to leave a comment.