This guide will show you how to integrate GoodAccess with JumpCloud SSO.

This feature is available in the Premium plan and higher.

Please note: Changing the login method to identity provider will permanently delete all Members you invited. Your team Members will be automatically added to GoodAccess upon their first login. Manually added Members will stay.

Remember to grant your JumpCloud users access permissions to GoodAccess. Users without them won't be able to log in.

Step 1 - Adding a new identity provider

Log in to the GoodAccess Control Panel, and go to Settings > SSO & MFA.

Click + Add provider, enter the Provider name, choose your Identity Provider, and click Continue.

Step 2 - Setting up Single Sign-On with SAML

Log in to the JumpCloud Admin console, and go to User Authentication > SSO Applications.

Click + Add New Application, select Custom Application, and click Next.

Select Manage Single Sign-On (SSO) > Configure SSO with SAML, and click Next.

Give the application a name, and click Save Application.

Click Configure Application.

1. Single Sign-On Configuration

Copy the details from GoodAccess - (2) GoodAccess links.

  • SP Entity ID - Entity ID

  • ACS URLs - Assertion Consumer Service URL

  • SAMLSubject NameID - email

  • SAMLSubject NameID Format - urn:oasis:names:tc:SAML:2.0:nameid-format:unspecified

  • Signature Algorithm - RSA-SHA256

  • Default Relay State - Relay State

  • Login URL - Login URL

Return to GoodAccess, and click Continue.

Return to JumpCloud.

2. Attributes

Click add attribute, and add the following attribute:

Service Provider Attribute NameJumpCloud Attribute Name

"email" (without quotes)


3. Setting up GoodAccess

Click Copy Metadata URL, and open the URL in a new tab.

Copy the details to GoodAccess - (3) Identity Provider links, and click Continue.

  • Sign in URL - IDP URL

  • Entity ID - IdP Entity ID (choose a name)

  • X509 signing certificate - Copy the certificate from the new tab

Return to JumpCloud, and click Save.

Skip the next step in GoodAccess, and click Submit to finish the configuration.

You have now successfully set up your JumpCloud SSO with GoodAccess.

Step 3 - Managing user access

In the application, go to User Groups.

Choose who should have access, and click Save.

Last updated