Setting up SAML 2.0 for Replicon or Polaris
Replicon and Polaris support use with SAML 2.0, but they do not host their own identity provider for it. If you want to use SAML 2.0 with either of these applications, you must enlist a third party identity provider.
For information on assigning SAML authentication settings to users, refer to Setting up users for single sign-on.
Setting up SAML
Before you set up your identity provider, you need to enable SAML in Replicon/Polaris and configure transfer settings.
You’ll need either the SAML 2.0 metadata XML file or the public key and transfer URL(s) from your identity provider to carry out this procedure. We recommend configuring SAML 2.0 using the metadata XML file, if you have that option.
If you are using ADFS Servers, you can download your metadata XML file from this location:
- https://<idpHostname>/FederationMetadata/2007-06/FederationMetadata.xml
If you're using a different identity provider, contact them to find the location of the metadata XML file.
To set up SAML 2.0:
- Log in to Replicon/Polaris.
- Go to Administration > System and Security > Security Settings.
- From the Authentication Providers section, click the Add Authentication Provider.
An Add Authentication Provider dialog displays.
- From the Provider Type drop-down in the dialog that displays, select SAML 2.0.
- Either upload the metadata XML file from your identity provider in the Configuration Metadata field, or complete the following fields, with data from your provider:
-
- SSO HTTP Post URL
- SLO HTTP Redirect URL
- XML Signature Algorithm
- Public Key
- Click Save.
SAML 2.0 will now be enabled, and Replicon/Polaris is now set up for use with your identity provider.
Setting up your SAML identity provider
Once you've enabled and configured Replicon/Polaris, you can configure your identity provider. To do this, you’ll need a service provider metadata XML file. You can find this file at:
- https://global.replicon.com/!/saml2/<YourCompanyKey>
Talk to your identity provider if you need help with setup. Here are some examples of functionality in Replicon/Polaris, for three common identity providers:
- ADFS 2.0: Configuring ADFS 2.0 to work with SAML 2.0
- Microsoft Entra ID: Microsoft Entra integration with Replicon - Microsoft Entra ID | Microsoft Learn
- Okta: Setup SSO
Once we have the Metadata or Public Certificate:
- Go to Administration > Security Settings.
- Click Add Authentication Provider
- Select SAML 2.
If your identity provider doesn't accept the metadata XML file, you can manually configure your provider.
XML Signature Algorithm for the SAML 2.0 should be SHA256.
Related topics
Using SAML for single sign on
Setting up SAML 1.1 for Polaris
Using single sign on with Polaris
Setting up users for single sign on authentication
Configuring ADFS 2.0 to work with SAML 2.0