Search
Menu
Search
/
Sign in

Connect JumpCloud

Learn how to configure a connection to JumpCloud via SAML

IntroductionLink

Each SSO Identity Provider requires specific information to create and configure a new Connection. Often, the information required to create a Connection will differ by Identity Provider.

To create a JumpCloud SAML Connection, you'll need four pieces of information: an ACS URL, an Identity Provider Issuer (also known as an Entity ID), an Identity Provider SSO URL, and an X.509 Certificate (also known as an IDP Certificate).

WorkOS ProvidesLink

WorkOS provides the ACS URL and IdP URI (Entity ID). They're readily available in your Connection's Settings in the Developer Dashboard.

The ACS URL is the location an Identity Provider redirects its authentication response to. In JumpCloud's case, the ACS URL and Entity ID need to be set by the Enterprise when configuring your application in their JumpCloud instance.

Specifically, the ACS URL and Entity ID will need to be set in the "Single Sign-On Configuration" section of the SAML app. You will input the ACS URL for "ACS URL" and the Entity ID as both "IdP Entity ID" and "SP Entity ID":

OverviewLink

And then you provide the JumpCloud SSO URL and X.509 certificate. Here's how to obtain them:

1
Log inLink

Log in to the JumpCloud admin dashboard, select "SSO" on the left and select your Application.

2
Obtain Identity Provider DetailsLink

Copy and Paste the "IDP URL" into the IdP SSO URL field in your WorkOS Developer Dashboard. Then select the dropdown next to "IDP Certificate Valid", click "Download certificate" and save it to your preferred directory.

3
Configure Attribute MappingLink

In the "User Attributes" section of the Single Sign-On Configuration page for the SAML app, add the following field-value parameter pairs:

  • id -> email
  • email -> email
  • firstName -> firstname
  • lastName -> lastname

IMPORTANT: Be sure to check the "Sign Assertion" box.

4
Upload CertificateLink

Finally, upload the X.509 Certificate in your WorkOS Connection Settings. Your Connection will then be linked and good to go!