Versions Compared

Old Version 5

changes.mady.by.user Former user

Saved on

compared with

New Version Current

changes.mady.by.user Cale O'Bryan

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

This guide is intended to help configure single sign on / SAML 2.0  for Lucidity Software to be able to authenticate against your Google users.

...

Create a Lucidity app

...

Instance

  1. Log in to https://admin.google.com 

Gadget
urlhttps://integralcs.atlassian.net/rest/gadgets/1.0/g/com.atlassian.jira.ext.charting:numberoftimesinstatus-gadget/com/atlassian/jira/ext/charting/gadget/numberoftimesinstatus-gadget.xml

  1. NOTE: The account that you use needs to have Super

...

  1. Admin privileges to perform the setup.

...

  1. On the left-hand-side menu click Apps > Web and mobile apps

    Image Added

  2. In the centre of the “Web and mobile apps“ screen click Add app > Add custom SAML app

    Image Added

  3. The “Add custom SAML app“ modal will be displayed

    Image Added

  4. Enter an appropriate “App name“ such as “Lucidity“ and optionally select a new icon. Click Continue

    Image Added

    Suggested icon:

    Image Added

  5. Download metadata in Option 1 and send this file to

...

  1. your Lucidity Customer Representative. Click Continue
    You can also get this data once the app has been set up

...

Enter the following details provided below and leave the rest as  the default value:

Info

Replace {site-name} with your lucidity site name

Under the General section:

...

  1. Image Added

  2. In the “Service provider details“ screen enter the following (leave the Name ID format and Name ID values as default):

    1. ACS URL: https://{

...

    1. clientName}.

...

    1. {domain}/simplesaml/module.php/saml/sp/saml2-acs.php/{

...

    1. clientName}

    2. Entity ID

...

    1. : https://{

...

    1. clientName}.

...

    1. {domain}/simplesaml/module.php/saml/sp/metadata.php/{

...

    1. clientName}

    2. Start URL:

...

    1. https://{

...

    1. clientName}.

...

    1. {domain}/home/login/lucidityintranet/completesso/{

...

Click next

...

    1. clientName}

    2. NOTE: {clientName} represents your Lucidity instances subdomain and {domain} represents your Lucidity domain (luciditysoftware.com.au or lucidity.io)

      Image Added

  2. Click Continue

  3. In the “Attribute mapping“ screen click Add mapping:

    1. Google Directory attributes: Basic Information > Primary email

    2. App attributes: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn
      Select category: Basic Information
      Select user field: Primary Email

...

    1. NOTE: The value needs to match the username naming

...

    1. conventions used for users in Lucidity. If an email is used only the first part is required (eg bob.

...

    1. smith@somewhere.com becomes bob.smith for authentication)

...

    1. Image Added

  2. Click

...

  1. Finish

  2. Enable the App

...

  1. . From back in the main SAML app index, select the newly created app

  2. Click User access

    Image Added

  3. Select ON for everyone OR select the required group(s) from the left-hand-side. Click Save

    Image Added

  4. If you have not already sent the metadata.xml to you Lucidity

...

  1. Customer Representative please do so now

...

In this page:

Table of Contents

Related pages:

Child pages (Children Display)
pageSingle Sign On