Organisations / General

SAML

CloudCannon is set up as a Service Provider (SP) to allow Single Sign On (SSO) for your organisation. To use this feature you must already have your own Identity Provider (IdP).

Configuring SAML

SAML can be a tricky thing to configure with only one end of debugging. If you would prefer manual assistance with setting up, please contact support.

To configure SAML with your IdP you will need the following details:

  • SAML 2.0 Endpoint (HTTP)
  • Issuer
  • X.509 Certificate

The issuer is configurable to allow multiple organisations from the same IdP. It must start with cloudcannon.com/. Leaving this blank will configure it as cloudcannon.com.

To add these details:

  1. Go to Organisation Settings / SAML
  2. Fill in all of the fields available and submit the form

The Details form in the Organisation Settings

Once configured you will get a screen defining any information you will need. If you require more information than displayed please contact support.

Okta Setup

Okta is a popular Identity Provider. To use Okta SAML with CloudCannon follow these instructions:

Create app

Create a new SAML 2.0 application on Okta for CloudCannon.

Create app

Configure Okta

Go to CloudCannon and open Organisation Settings / SAML. Copy your Issuer and Consume URL. If you do not have a SAML option in your menu contact support to get this enabled.

SAML details

Enter the Issuer and Consume URL information into Okta.

Okta details

And confirm you’re using CloudCannon as an internal applicaiton.

Okta confirm

CloudCannon Configure

View the setup instructions for your newly created application on Okta.

Okta confirm

Copy the Identity Provider Single Sign-On URL and X.509 Certificate.

Okta configuration details

Enter the Identity Provider Single Sign-On URL and X.509 Certificate information into CloudCannon.

Okta configuration details

arrow_back

Organisations / General

Branding

Read previous doc
arrow_forward

Organisations / General

Payments

Read next doc