What is the issue you're facing?

Solution

This article explains how to integrate Market Dojo with SAML. It also explains the features that are, and are not supported, by Market Dojo's integration. 

Security Assertion Markup Language (SAML) is an open standard that allows identity providers (for example Okta, or Ping Identity) to pass authorisation credentials to service providers like Market Dojo.

By integrating with SAML, users can sign on to Market Dojo using their existing credentials. It helps IT teams to manage which users have access and is helpful when people join or leave their organisation.

1. Authentication
   
1. SAML can be used by Market Dojo for Single Sign On (SSO). This means that a user with an account can login to Market Dojo, without supplying a password, if they have already authenticated themselves with a SAML Identity Provider (IDp) that has been integrated with Market Dojo. 
   
2. SAML cannot currently be used by Market Dojo to create an account for a user that exists in the IDp, but does not have an account in Market Dojo. The user must manually create their account first.
   
2. Authorization
   
1. SAML cannot be used by Market Dojo to change which resources a user can see.  For example, to add them to a particular host group, or to assign them a licence.

In this example we will use Ping Identity, but instructions will be similar for other solutions (e.g. Okta)

First of all, ensure that you have an administrator account with Ping

1. Go to your company portal for the SSO provider that you are using (in this example Ping Identity).

2. Find the 'Connections'

3. Click 'Add Application’, choose ‘Web App’ and then select the ‘SAML’ option

4. Give the application a name, description and choose an icon.
   

5. On the next page, choose the option to import metadata, import from URL. Enter the url as follows:-
   https://<your-whitelabelled-marketdojo-url>/omniauth/saml/metadata
   For example:-
   https://xyz.marketdojo.com/omniauth/saml/metadata

6. Fill out the field ASSERTION VALIDITY DURATION (IN SECONDS)

7. Fill out the field TARGET APPLICATION URL as follows:
   https://<your-whitelabelled-marketdojo-url>
   For example:-
   https://xyz.marketdojo.com

8. Click Save and Continue

9. On the next page, it is not necessary to map additional fields

10. Save

11. Toggle the option to enable the new application
    

12. Go to the Configuration tab of the Application and make a note of
    - IDP Metadata url

• Login to your Market Dojo account 

• Go to the Admin>Integrations page

• Click +SAML, and enter the settings you noted in the previous step

• IDP Metadata url is entered into URL
  (note that either URL or XML Configuration File are entered. If you are using the XML file this should be the full text contents of the file, not a link to it.)

• Ensure that you enable SAML as a permitted option for sign-in
  

• Logout of Market Dojo

• Go to the login page (be sure to use your white label domain)

• You should see an option ‘Sign in with SAML, click it

• If everything is configured correctly, you will be logged in