How to set up single sign-on
Configuring and implementing SAML SSO will require the involvement of your IT team. Your identity provider and Felix account will need to be configured to allow users access to Felix.
Before you can set up your SSO account, you must first enable it for your organisation. Changing to SAML can impact the access your users have to Felix, and users should be made aware of any changes ahead of time.
- Log in to Felix.
- Navigate to Settings > Single Sign-On.
- Check the Enable Single Sign-On checkbox.
- Click the blue Update Configuration button.
Set up SAML
The following section describes how to set up and configure SAML for your Felix account.
Add Felix to your identity provider
The first step towards setting up SAML is to add Felix as a service provider. Once this has been completed, you can move on to configuring the settings for your SAML connection.
Inside of your identity provider please ensure the following attributes have been matched:
|Felix Reference||Azure Reference|
Configure your Felix settings
Felix requires you to enter values which are generated when adding a new SAML service provider to your identity provider.
|Entity ID||The URL where the identity provider receives authentication requests from Felix.|
|SSO URL||The URL which users should be redirected to when logging in.|
|Public x509 Certificate||Certificate containing the public key used to verify authentication requests with your identity provider.|
Configure your provider settings
Once you've completed entering the details from your identity provider, it's time to copy the details across from Felix that are required by your identity provider.
SP Entity ID
This field can also be known as "Audience URI".
SP Assertion Consumer Service URL
This field can also be known as "Single sign on URL".
Test SSO for your organisation
As soon as you have updated the SSO configuration for your Felix account, you will be able to try logging in with your corporate credentials. To do this:
- Open a new incognito window / open a new web browser.
- Attempt to log in to Felix using your corporate credentials.
- Confirm you are logged in correctly and have the correct permissions.
Warning: Do not log out of your account when testing your SSO configuration. Ensure SSO is operating as expected in an incognito window or alternate web browser to prevent losing access to your account.