SSO (Single Sign-On) authentication allows your team members to securely log into the Teams by Swivl app or web platform with ease and simplicity. Teachers, coaches, and students use their institutional login and password to access their Swivl Team account. It is a time-saving, convenient, and secure process of logging in and using Swivl Solution.
To set up SSO please forward this article to your IT department
Information we need from you as the Identity Provider
- Identity Provider Name (example: TTU)
- Email domain (example: ttu.edu)
- Entity ID (example: https://idp.shibboleth.ttu.edu/idp/shibboleth)
- URL to metadata.xml (example: https://idp.shibboleth.ttu.edu/idp/shibboleth)
- Email this information to your primary Swivl contact or to support@swivl.com
What needs to be configured on your side
Create a new Service Provider profile with the following settings:
- Service Provider Name: Swivl Cloud
- Entity ID: https://cloud.swivl.com/sso
- ACS URL: https://cloud.swivl.com/sso/login_check
- Metadata: http://cloud.swivl.com/sso/metadata.xml
- Required user profile attributes:
- John Smith
- Smith John
- Smith, John
- First name
- Last name
- Full name - in one of the following formats:
- Email address (attribute name: uid)
How to test the SSO connection
- Visit page https://cloud.swivl.com/sso/login
- Enter Email address in your domain and press the “Sign in” button
- You should be redirected to your IdP sign in page
- Sign in on IdP using your credentials
- You should then be redirected back to Swivl Teams
- Notify us about successful SSO connection test and we will setup attribute mapping on our side
- Sign in with SSO again and you should see the correct First and Last name.
MS Azure SSO integration with Swivl Teams
-
To configure Azure AD integration, you must be an administrator in Azure and have the Admin account (not Co-Admin) in AlertSite.
To create an application in Azure AD, follow the next steps:
1. Log in to the your Azure portal as an administrator: https://portal.azure.com/
2. Go to Azure Active Directory:
3. Select Enterprise Applications:
4. Click New application.
5. On the Add an application page, choose Non-gallery application.
6. In the Name field enter Swivl Teams. Click Add or Create.
7. Select Single sign on and select SAML.
8. On the Single sign-on page, click the edit button at the top right of the Basic SAML Configuration section.
9. Under basic SAML configuration section, perform the following steps:
- Identifier (Entity ID): https://cloud.swivl.com/sso
- Reply URL (Assertion Consumer Service URL): https://cloud.swivl.com/sso/login_check
- Sign on URL: blank
- Relay State: blank
- Logout URL: blank
10. Click the edit button next to User Attributes & Claims and configure the Claims for the application:
11. Check and update the Claims if needed:
givenname
- Name: givenname
- Namespace: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname
- Source attribute: user.givenname
surname
- Name: surname
- Namespace: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname
- Source attribute: user.surname
email address
- Name: email address
- Namespace: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
- Source attribute: user.mail
12. Download the Federation Metadata XML file and keep it handy. You'll need this in the next step.
Setup SSO connection with Swivl Platform
Information we need from you as the Identity Provider:
- Identity Provider Name (example: TTU)
- Email domain (example: ttu.edu)
-
Send us URL to metadata.xml file downloaded on the step 12(example: https://idp.shibboleth.ttu.edu/idp/shibboleth)
- Email this information to your primary Swivl contact or to support@swivl.com
How to test the SSO connection:
- Visit page https://cloud.swivl.com/sso/login
- Enter Email address in your domain and press the “Sign in” button
- You should be redirected to your IdP sign in page
- Sign in on IdP using your credentials
- You should then be redirected back to Swivl Teams
- Notify us about successful SSO connection test and we will setup attribute mapping on our side
- Sign in with SSO again and you should see the correct First and Last name.
For additional help, email support@swivl.com
Comments
0 comments
Please sign in to leave a comment.