Skip to main content
All CollectionsIntegrations & SSOSingle Sign On
Setting Up SSO with SAML2 on eloomi Infinite
Setting Up SSO with SAML2 on eloomi Infinite
Zaheer Haral avatar
Written by Zaheer Haral
Updated over 3 months ago

Description

This article covers how to set up SSO on eloomi’s Infinite platforms using SAML2 and ADFS.

Important note: We do not support multiple SSO connections to the same platform.

Adding a Relying Party Trust

At this point, you should be ready to set up the ADFS connection with your eloomi Platform.

1: Select the Relying Party Trusts folder from ADFS Management and add a new Standard Relying Party Trust from the Actions sidebar.

2: Click Start and in data-source select Import data about the relying party published online or on a local network.

3: In the Federation metadata address field input the below line of text into the field, ensuring that you replace <your_platform_name> with your platform name.

https://<your_platform_name>.eloomi.io/saml2/metadata

4: Finish the relying party-trust setup as your company requires.

Creating Claim Rules

When you have set up the Relying Party Trust, Claim Rules must be created/updated. The wizard for this usually opens once the trust is created, if not, open it manually.

Click the "Add rule" and select Send LDAP Attributes as Claims.

  1. Give the claim rule a name, ex: Email Rule

  2. Select Active Directory as your attribute store.

  3. In the LDAP Attribute column, select E-mail-Addresses

  4. In the Outgoing Claim Type (Select or type to add more) column, select E-mail Address

  1. Click OK and save the rule and now once again click the Add Rule button.

  2. Now select Transform an Incoming claim in the Claim rule template dropdown and click Next

  • In the Incoming Claim Type dropdown, select E-mail Address

  • In the Outgoing Claim Type select Name ID

  • In the Outgoing name ID format select Email

Check the Pass through all claim values and click OK to create the claim rule.

Click OK and OK again. Now, the setup is done :)

Setting up SSO on eloomi’s side

1: Navigate to Admin > Settings > Integrations > SSO

2: Click on “Get started” then choose your preferred provider (In this case, it will be SAML2)

3: Fill out the details specified in your ADFS metadata file.

4: Finish filling out the details, then save.

5: Voila! You have finished setting up SSO with ADFS and SAML2.

Testing

Testing the SSO login can be achieved by navigating to: https://yourplatform.eloomi.io/sso/log-in

For technical support on SSO configuration or errors, please raise a ticket at helpdesk.eloomi.com, including the error message and screenshot and steps taken before the challenge arose.

Keep In Mind SSO REQUIRED

If you set 'SSO Required' to ON, people can only log in via SSO.


If you set 'SSO Required' to OFF, people not in your Active Directory will still have the option to log in by standard method by providing a username and password.

In case you run into any challenges or have questions, feel free to reach out to our Support Team via the eloomi Support Hub.

Related Articles
Setting Up SSO on eloomi Infinite
Setting Up SSO with Entra AD on eloomi Infinite (former AzureAD)
Upgrading to eloomi Infinite - Everything You Need to Know
How to Set Up a Webinar as an Event on eloomi Infinite
Setting up SSO with OKTA in eloomi Infinite
Did this answer your question?