LogoLogo
GoodAccess WebsiteRequest Free TrialDownload App
  • Getting Started
    • 1. What is GoodAccess?
    • 2. Architecture Overview
    • 3. Sign up for Free Trial
    • 4. Download App & Connect
  • 🖥️Configuration guides
    • Features
      • Zero Trust Access Control
        • Access Cards
        • Device Posture Check
        • Device Approval
        • Geo Restrictions
      • API Integration
        • API Reference
          • Members
          • Groups
          • Systems
          • Access Cards
          • Relations
          • Gateways
          • Logs
        • Acronis Integration
      • SIEM Integration
      • SSO/SCIM
        • Auth0
        • Cisco Duo
        • Google Workspace
        • JumpCloud
        • Microsoft Entra ID
        • Okta
        • OneLogin
        • Ping Identity
        • Universal (SAML)
      • MFA
      • Passkeys
      • MSI deployment
      • Threat Blocker
      • Custom Domain Blocking
      • DNS Management
      • Split Tunneling
      • Port Forwarding
    • Branch Connector
      • Cisco
      • Cisco Meraki
      • FortiGate
      • MikroTik
      • SonicWall
      • UniFi USG
      • Zyxel Nebula Control Center
      • Other supported routers and firewalls
    • Cloud Connector
      • AWS
      • Google Cloud
      • Microsoft Azure
      • Other Public Cloud providers
    • IP whitelisting
      • APACHE Web Server
      • AWS VPC
      • Azure (Office 365)
      • Google Cloud
      • Google Workspace
      • Magento
      • Microsoft IIS
      • NGINX
        • Domain
        • Subdomain
        • URL
      • OpenCart
      • PHP
      • PHPMyAdmin
      • Pipedrive
      • SalesForce
      • SSH server
      • WordPress
      • Zoho CRM
    • Linux
      • DEB repository
      • RPM repository
      • Manual installation
      • Linux Troubleshooting
  • 🆘FAQ & Troubleshooting
    • FAQ
      • Business
      • Technical
    • Troubleshooting
  • 📓Product Changelog
    • Windows
    • macOS
Powered by GitBook
On this page
  • Step 1
  • Step 2
  • Step 3
  • Step 4
  • Step 5

Was this helpful?

  1. Configuration guides
  2. Features
  3. SSO/SCIM

Universal (SAML)

This guide will show you how to integrate GoodAccess with with any SSO provider supporting SAML.

PreviousPing IdentityNextMFA

Last updated 7 months ago

Was this helpful?

This feature is available in Premium plan and higher.

Remember to grant your users access permissions to GoodAccess. Users without them won't be able to log in.

You may set up Single Sign-On (SSO) in .

Step 1

  1. Go to the settings of your identity provider and look for an option to add a new application.

  2. If asked for the sign-in method, select SAML (2.0).

  3. Name your application and choose a logo.

Step 2

These details are general and are the same for every identity provider. However, individual identity providers can use different names for the fields and the settings may vary in details.

If you are lost, we recommend checking our other for identity providers where you can gain more insight on the setup of yours. If that doesn't help you, check the guides from your provider or .

When asked for SAML configuration, enter the details from GoodAccess - (2) GoodAccess links.

  • Identifier - Entity ID

  • Reply URL - Assertion Consumer Service URL

  • Sign on URL - Login URL

  • Relay State - Relay State

For User Attributes enter the following:

  • Name - Enter "email"

  • Name format - Choose "Unspecified"

  • Value/Source Attribute - Choose "user.mail"

Step 3

Add permissions for the application to an existing group within your identity provider or create a new one and assign users to it.

Step 4

Open your newly created application, look for SAML settings and copy the following details into GoodAccess - (3) Identity Provider Links.

  • SSO/Login URL - Sign in URL

  • Identifier/Issuer - Entity ID

  • Certificate - X509 signing certificate

Step 5

Now switch back to GoodAccess, click Continue, and Submit.

🖥️
Control Panel > Settings > SSO & Identity
guides
contact us