How to integrate Flood with your SAML Identity Provider (IdP)
Integrating Flood with your SAML Identity Provider (IdP) allows people from your organisation to log in to Flood using their SAML accounts without the need to create a separate Flood login.
Only SAML with Azure ADP as the SAML Identity provider is currently supported.
- SAML integration must be enabled for your account. This feature is available upon request. If you're interested in trying this out, please contact us.
- You must have an existing account with a SAML IdP and administrator access to it.
After logging to Flood, navigate to the Integrations page, expand the SAML panel, then click on ADD SAML CONNECTION button. Note that this page is only available to the Account Owner.
On the "Add Credential" popup, enter the required information:
- Connection Name: Any name to help you recognise the connection later. Note that this name will be used as the identifier and thus cannot be changed after saving.
- IdP Domains: The domain aliases that you want Flood to recognise whenever users from your organization log in to Flood, for example
mysaml.com. More on this later in this tutorial.
- Sign In URL, Sign Out URL & X509 Signing Certificate: Ask your SAML IdP Administrator for this information.
Scroll down to the below part of the popup. Select values for these two required fields:
- Assign users to the below organization
- Assign users to the below team
In these fields, you can specify the organization and team within Flood that users from your organization will be placed into by default whenever they log in to Flood using their SAML account.
Users that were already members of your Flood account before SAML integration is set up will retain their membership to the organization(s) and team(s) that they belong to in addition to the default organization and team selected in this step.
Choose the default organization and team carefully: users will be auto-added to the organization and team selected upon every sign in via SAML, if they aren't already members.
Click on the SAVE button. If the information you entered is correct, you'll see the popup below. Click on the "Copy to clipboard" icon to copy the Post-back URL and the Entity ID, and then send them to your SAML IdP Administrator to do the rest of the configuration on the SAML IdP side.
Click on DONE to close the popup. Your new connection will show up.
To view the Post-back URL and Entity ID again, click on the gear icon next to the SAML connection that you have just created, and then click on SAVE.
The steps to configure your SAML IdP to work with Flood will vary depending on the provider you use. However, here are some instructions to popular IdPs:
After your your administrator has finished the setting on the SAML IdP side, new users can log in to Flood.
Once the SAML integration is set up by the account owner, users should log in instead of signing up.
Enter the email ending with the exact domain that you have input in the IdP Domains field in the above step of this tutorial (
mysaml.comfor example, in this case). As soon as Flood recognises the domain, the password field will be hidden, and you can click on LOG IN to navigate to the login page of your organization.
After you're authenticated, you'll be redirected back to Flood. Note that you'll be added to the Organization and team on Flood that you have selected at the moment of creating the SAML connection, with the default role of