This is a technical integration. We recommend asking your technical web team/web design agency to complete this task for you.
Please find steps below for Passle clients interested in setting up SSO. Full documentation can be found at the bottom of this article.
To set up SSO with Passle:
- To set up SSO, your Identity Provider must support SAML. To establish your SSO account on the Passle side, we need the following details:
SSO Service URL: IdP URL where login requests will be directed (GET)
Entity ID / Issuer
Single logout URL (optional): where to send users after single logout
Public x509 Certificate
Signature Algorithm used (either RSA-SHA1, RSA-SHA256, RSA-SHA384 or RSA-SHA512)
All these can be found via your IDP XML file. Please provide this file information as an externally available URL.
- Insert our Passle information into your IdP sign-in information. Our metadata can be found with the URL:
https://www.passle.net/saml/[Your client shortcode]/metadata
Please ask Support if you are unsure about your client shortcode.
Note: Some integration software has the ability to provide the metadata and it will parse it without needing to extract the data manually.
- In order to log in as a user, Passle needs to match the email address of the user we have in our application with the email address found in the SAML packet.
Passle looks for the email address in the Name Identifier or an Email Assertion, so you must
populate at least one of those fields with the user’s email address.
- Once both metadata setups have been completed, contact email@example.com to turn SSO live.
Our technical PDF below provides in-depth technical information to help with set up.