SAML configuration steps

1. Access Integration Settings:

   • Navigate to your Account page.
   • Click on the Integration tab.

2. Select SAML as Sign-On provider:

   • From the dropdown menu, choose Sign-On provider (SAML).

3. Provide SAML configuration details:

   • Identifier (Entity ID): https://api.cosafe.se/ or https://api.cosafe.com.br/ depending on region.
   • Reply URL (assertion consumer service URL): https://api.cosafe.se/api/Account/SamlRedirect or https://api.cosafe.com.br/api/Account/SamlRedirect depending on region.
     • For Admin Panel access, add: https://admin.cosafe.se/api/account/SamlRedirect or https://api.cosafe.com.br/api/account/SamlRedirect depending on region.

4. Define required SAML attributes:

   • name: User's full name
   • emailaddress: User's email address
   • identifier (optional): Unique identifier, especially if the user's email changes. When using SAML SSO with SFTP user import, this should match the UniqueID in the SFTP file.

info

The attributes should be added with a namespace.

Example for Entra ID:

<AttributeName="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name">

<AttributeName="http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress">

5. Add domains:

   • Specify the email domains of users who will utilize SSO.
   • To add multiple domains:
     • Click +Add domain.
     • Enter each domain accordingly.

6. Save configuration:

   • After entering all necessary information, save your settings to enable SAML SSO.