Service Provider (SP) Initiated SAML Authentication Flow
SqlDBM offers Service Provider (SP) Initiated SAML Authentication for a variety of Identity Providers (IdPs). The diagram below illustrates the request workflow.
SSO Setup
Receive
<company identifier>from SqlDBM Customer Support by visiting the support portal and opening an SSO Enablement Support TicketFill in the values appropriate to your IdP:
Entity ID: https://idp.sqldbm.com
ACS URL: https://idp.sqldbm.com/saml/metadata/<company identifier>/Acs
3) Setup Claims:
-
Email
This should correspond to the user’s email address
-
Claim type should match the following (case sensitive)
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
Submit a Request to Enable SSO
Once your team has completed the setup steps mentioned above, please proceed to opened support ticket and provide the following information
SAML 2.0 Metadata Url
What to expect once you have submitted a ticket:
The support team will review the information shared
Once the information is verified, your SSO will be enabled and we'll check that it properly redirects to your IdP and notify you on your ticket
Please verify that logging in is successful and let us know
After Enabling SSO
For new users
Accept the invitation to join your organization by clicking the link in your invitation email
Enter your email
Enter the verification code sent to your email to confirm SSO association
Visit your subscription page to confirm that you accepted the invitation
Your account will now be linked to the subscription
For existing subscription users
Log in using SSO by selecting the appropriate IdP from the options provided, or proceed directly to the SQLDBM private SSO sign-in page
Enter your email
Enter the verification code sent to your email to confirm SSO association
To access SSO, use the icons on the Sign-In page. If your provider isn’t listed, click the three dots to find the correct IdP.