Versions Compared

Old Version 4

changes.mady.by.user Former user

Saved on

compared with

New Version 5

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This guide is intended to help configure single sign on / SAML 2.0  for Lucidity Software to be able to authenticate against your Google users.

...

  1. Log in to https://admin.google.com 

    Gadget
    urlhttps://integralcs.atlassian.net/rest/gadgets/1.0/g/com.atlassian.jira.ext.charting:numberoftimesinstatus-gadget/com/atlassian/jira/ext/charting/gadget/numberoftimesinstatus-gadget.xml

    Info

    The account that you use needs to have Super admin privileges to perform the setup


  2. Click on the hamburger menu
  3. Navigate to App → SAML apps


  4. Click Create
  5. Select the "SETUP MY OWN CUSTOM APP"
  6. Download the IPD Metadata and send this file to the Lucidity Contact 
    You can also get this data once the app has been set up
  7. Click next
  8. Fill in the Application Nam, Description and logo can be anything you want as long as you remember whats it for, we recommend calling your app “Lucidity Software” and using the Lucidity icon provided:
  9. Once you have done this click Next

  10. Enter the following details provided below and leave the rest as  the default value:

    Info

    Replace {site-name} with your lucidity site name

    Under the General section:


    ACS URL
    https://{site-name}.luciditysoftware.com.au/simplesaml/module.php/saml/sp/saml2-acs.php/{site-name}

    Entity ID
    https://{site-name}.luciditysoftware.com.au/simplesaml/module.php/saml/sp/metadata.php/{site-name}

    Start URL:
    https://{site-name}.luciditysoftware.com.au/home/login/lucidityintranet/completesso/{site-name}

    leave the Name ID and Name ID format as the default values


  11. Click next


  12. Add a new Mapping Under the Attribute Mapping:
    Add the following in the following fields:
    Enter the application attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn
    Select category: Basic Information
    Select user field: Primary Email

    Info

    The value needs to match the username naming convention used for users in Lucidity. If an email is used only the first part is required (eg bob.smith@somewere.com becomes bob.smith for authentication)

  13. Click Finished
  14. Enable the App
  15. If you have not already sent the metadata.xml to you Lucidity contact please do so now, so that they can finish the set up

...