Connect JumpCloud

Learn how to configure a connection to JumpCloud via SAML

Introduction

Each SSO Identity Provider requires specific information to create and configure a new Connection. Often, the information required to create a Connection will differ by Identity Provider.

To create a JumpCloud SAML Connection, you'll need to upload a JumpCloud Metadata file.

WorkOS Provides

WorkOS provides the ACS URL and IdP URI (Entity ID). They're readily available in your Connection's Settings in the WorkOS Dashboard.

The ACS URL is the location an Identity Provider redirects its authentication response to. In JumpCloud's case, the ACS URL and Entity ID need to be set by the Enterprise when configuring your application in their JumpCloud instance.

Specifically, the ACS URL and Entity ID will need to be set in the "Single Sign-On Configuration" section of the SAML app. You will input the ACS URL for "ACS URL" and the Entity ID as both "IdP Entity ID" and "SP Entity ID":

Overview

And then you provide the JumpCloud Metadata file. Here's how to obtain it:

Log in

Configure Attribute Mapping

In the "User Attributes" section of the Single Sign-On Configuration page for the SAML app, add the following field-value parameter pairs:

id -> email
email -> email
firstName -> firstname
lastName -> lastname

IMPORTANT: Be sure to check the "Sign Assertion" box.

Upload Metadata File

Be sure to check "Declare Redirect Endpoint".

Click the “Export Metadata” button under "JumpCloud Metadata". This will download an XML metadata file.

In the Connection Settings of the WorkOS Dashboard, click "Edit Metadata Configuration".

In the modal that pops up, upload the JumpCloud Metadata file and then select "Save Metadata Configuration".

Once the file has uploaded, your Connection will then be linked and good to go!