SAML configuration steps

1. Access Integration Settings:

   • Navigate to your Account page.
   • Click on the Integration tab.

2. Select SAML as Sign-On provider:

   • From the dropdown menu, choose Sign-On provider (SAML).

3. Provide SAML configuration details:

   • Identifier (Entity ID): https://api.cosafe.se/ or https://api.cosafe.com.br/ depending on region.
   • Reply URL (assertion consumer service URL): https://api.cosafe.se/api/Account/SamlRedirect or https://api.cosafe.com.br/api/Account/SamlRedirect depending on region.
     • For Admin Panel access, add: https://admin.cosafe.se/api/account/SamlRedirect or https://api.cosafe.com.br/api/account/SamlRedirect depending on region.

4. Define required SAML attributes:

   • name: User's full name
   • emailaddress: User's email address
   • identifier (optional): Unique identifier, especially if the user's email changes.

info

The attributes should be added with a namespace.

Example for Entra ID:

<AttributeName="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name">

<AttributeName="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress">

5. Add domains:

   • Specify the email domains of users who will utilize SSO.
   • To add multiple domains:
     • Click +Add domain.
     • Enter each domain accordingly.

6. Save configuration:

   • After entering all necessary information, save your settings to enable SAML SSO.