SAML-based Single Sign-on (SSO) gives users access to Smarp through your company's identity provider (IDP). SAML adds an extra layer of security as it ensures that only your company's employees are able to join your company Smarp domain. With SAML enabled, your users have to log in with their company credentials to access. This means you cannot invite users to join Smarp anymore, but instead users assigned to access Smarp in your IT environment can easily join with the click of a button from your Smarp domain, i.e. acme.smarpshare.com.
Reach out to your dedicated Customer Success specialist from Smarp if you are interested in SAML SSO for more information. (Please note that SSO needs to be enabled for your company Smarp domain. Reach out to your dedicated Customer Success specialist from Smarp for assistance.)
Steps to Set Up SAML SSO on Smarp
- Ask your dedicated Customer Success specialist from Smarp to enable SAML SSO setup for your company Smarp domain. Once this has been enabled from Smarp's side, a Single Sign-On-option will become visible under the Settings tab in the left-side list. Only a Company Admin will be able to see the Single Sign-on option in the list.
- Click Download metadata file from the settings.
- Initialize the creation of a new Smarp Service Provider application for your Identity Provider. Examples of IdPs include Okta, One Login, AD, GSuite, ADFS or any other SAML 2.0 compliant IdP.
- Instructions for setup for some IdPs can be found at the bottom of the page.
- Instructions for setup for some IdPs can be found at the bottom of the page.
- The Smarp Service Provider supports the following attributes in the SAML assertion:
- EmailAddress (Required)
- FirstName (Optional)
- LastName (Optional)
- After the configuration is completed in your IdP, please upload the metadata to Smarp by clicking the 'Upload metadata file'-button.
- After this the Test the configuration-button should become clickable. Click it to test that the configuration is active and valid. To test the configuration, you will be directed to log in through your IdP provider. If the login flow works and you access Smarp, the configuration has been successful.
- If everything works as expected, enable SAML by clicking on the switcher:
If there are any unexpected errors during setup or after enabling SAML, please refer to our troubleshooting document for possible solutions. If you cannot find an answer there, please contact Smarp Support from the button below.