Hosted Help Desk » Helpdesk Single-Sign-On via SAML

Helpdesk Single-Sign-On via SAML

What is "single sign on"

To put it simple: "single-sign-on" lets your users sign-in to Jitbit Helpdesk with the same credentials they use to log into other cloud apps or websites. Jitbit Helpdesk provides three ways of "single sign-on" support:

  1. Via the authentication API
  2. Via AD authentication
  3. Via windows-integrated authentication (self-hosted version only)
  4. Via SAML - keep reading.

SAML sign on

Jitbit Helpdesk supports SAML 2.0 protocol for single sign-on. Here's the settings you might need for your SAML provider:

  • APP ID URI (sometimes named "Entity ID" etc) - http://www.jitbit.com/web-helpdesk/
  • SAML sign-on URL - [HelpDeskURL]/Saml/Auth (for example, if you're on the hosted version: http://acme.jitbit.com/helpdesk/Saml/Auth )
  • Reply URL (sometimes named "Assertion Consumer URL" etc.) - [HelpDeskURL]/Saml/Consume (for example: http://acme.jitbit.com/helpdesk/Saml/Consume) -

Now, in the helpdesk admin panel you just need to specify the SAML-endpoint address and the x509-certificate (ask your SAML provider for these two) in the helpdesk admin section and it should just work. This feature works with both hosted helpdesk and downloadable one. You can integrate it with any SAML provider - Windows Azure, OneLogin etc.

What to include

Your SAML provider probably already includes "NameID" setting and "User.email" parameter. You can additionally add First and Last name attributes to the SAML response.

<saml:Attribute Name="first_name"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
  <saml:AttributeValue xsi:type="xs:anyType">FirstName
  </saml:AttributeValue>
</saml:Attribute>

<saml:Attribute Name="last_name"
NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified">
  <saml:AttributeValue xsi:type="xs:anyType">LastName
  </saml:AttributeValue>
</saml:Attribute>

SAML providers

Jitbit can work with any SAML provider including:

You can use SAML to integrate Jitbit with your LDAP, Active Directory, your multi-factor authentication modules, dongles, mobile logins etc.

No SAML? No problem, use the API

Our helpdesk comes with authentication API your developers can use to auto-login users to the helpdesk application

Last updated: 10/21/2016 more Hosted Help Desk whitepapers Helpdesk Single-Sign-On via SAML

Hosted Help Desk