How to integrate Flood with your SAML Identity Provider (IdP)
Integrating Flood with your SAML Identity Provider (IdP) allows people from your organisation to log in to Flood using their SAML accounts without the need to create a separate Flood login.
- You must have an existing account with a SAML IdP and administrator access to it.
On the "Add Credential" popup, enter the required information:
- Connection Name: Any name to help you recognise the connection later. Note that this name will be used as the identifier and thus cannot be changed after saving.
- IdP Domains: The domain aliases that you want Flood to recognise whenever users from your organization log in to Flood, for example
mysaml.com. More on this later in this tutorial.
- Sign In URL, Sign Out URL & X509 Signing Certificate: Ask your SAML IdP Administrator for this information.
Scroll down to the below part of the popup. Select values for these two required fields:
- Assign users to the below organization
- Assign users to the below team
In these fields, you can specify the organization and team within Flood that users from your organization will be placed into by default whenever they log in to Flood using their SAML account.
Users that were already members of your Flood account before SAML integration is set up will retain their membership to the organization(s) and team(s) that they belong to in addition to the default organization and team selected in this step.
Click on the SAVE button. If the information you entered is correct, you'll see the popup below. Click on the "Copy to clipboard" icon to copy the Post-back URL and the Entity ID, and then send them to your SAML IdP Administrator to do the rest of the configuration on the SAML IdP side.
Click on DONE to close the popup. Your new connection will show up.
The steps to configure your SAML IdP to work with Flood will vary depending on the provider you use. However, here are some instructions to popular IdPs:
Enter the email ending with the exact domain that you have input in the IdP Domains field in the above step of this tutorial (
mysaml.comfor example, in this case). As soon as Flood recognises the domain, the password field will be hidden, and you can click on LOG IN to navigate to the login page of your organization.
After you're authenticated, you'll be redirected back to Flood. Note that you'll be added to the Organization and team on Flood that you have selected at the moment of creating the SAML connection, with the default role of