This topic describes how to configure OneLogin to provide SSO for Jitbit using SAML.
-
Log into OneLogin as an admin and go to Apps > Add Apps.
-
Search for and select the Jitbit Helpdesk connector.
The initial Configuration tab appears.
-
Click Save to add the app to your Company Apps and display additional configuration tabs.
The Info tab appears.
-
Go to the Configuration tab and enter your Jitbit subdomain in the URL field.
https://your_org.jitbit.com/helpdesk/
-
Click Save.
-
Go to the Parameters tab and map Jitbit attributes to OneLogin attributes.
In most cases, you should keep the Configured by admin default. For more information, see Setting Credential Configuration Options.
For most implementations, you can accept all of the default attribute mappings. Ensure that the Jitbit field NameID (Subject) is set to Email. To change OneLogin values, click the parameter row to open the Edit Field dialog, and select the value from the drop-down list. Click Save if you made any changes on the Parameters tab.
-
Go to the SSO tab to configure your Jitbit account with OneLogin's SAML settings.
-
In a new browser tab, log into your organization's Jitbit account as admin.
-
On the Administration tab, select General Settings and scroll down to the Authentication Settings section.
-
Select the Enable SAML 2.0 single sign on option to allow for SSO functionality.
-
With both the OneLogin SSO tab and the Jitbit Authentication Settings page open, copy the following OneLogin SAML values to the analogous Jitbit fields.
Copy this OneLogin SSO field value:
To this Jitbit SSO field:
SAML 2.0 Endpoint (HTTP)
EndPoint URL
X.509 Certificate
To get the X.509 Certificate, click View Details to open the certificate page. Copy the entire X.509 Certificate, including "
----BEGIN CERTIFICATE----
" and "----END CERTIFICATE----
."X.509 Certificate
Paste the entire X.509 Certificate into the Jitbit X.509 certificate field.
When you are finished, the Jitbit Authentication settings page should look like this:
-
-
Click Save.
-
On the OneLogin Access tab, assign the OneLogin roles that should have access to Jitbit and provide any app security policy that you want to apply to Jitbit.
You can also go to Users > All Users to add the app to individual user accounts.
-
Click Save.
-
Test the SAML connection.
-
Ensure that you have user accounts in both OneLogin and Jitbit that use the same email as the username.
You can create a test user, or you can use your own account if you choose.
-
Make sure you are logged out of Jitbit.
-
Log in to OneLogin as an admin and give the test user access to the Jitbit app in OneLogin. (See step 9 above)
-
Log in to OneLogin as the test user.
-
Click the Jitbit icon on your OneLogin dashboard.
If you are able to access Jitbit, then SAML works.
-