Bamboo SAML as SP

Step 1: Go to Configure IDP tab.There are three ways to configure the plugin:

  • Click on the Import from Metadata in Configure IDP tab.
  • Select IDP “Import from Metadata URL”.
  • Enter your IDP Metadata URL in text field.
  • Select “Refresh Metadata Periodically”(Optional)
  • Click on Import

 

 

  • Import Metadata File
  • Click on the Import from Metadata in Configure IDP tab.
  • Select IDP “Import from Metadata File”.
  • Choose your Metadata file and click on Upload.

 

 

  • Manual Configuration

 

IDP Entity ID Identity Provider Issuer from IDP
Single Sign On URL Identity Provider Single Sign-On URL from IDP
Single Logout URL Identity Provider Single Logout URL from IDP
X.509 Certificate X.509 Certificate from IDP

 

 

Step 2: User Profile

  • Go to User Profile tab.Enter the following values
Username Name of the username attribute from IDP (Keep NameID by default)
Email Name of the email attribute from IDP (Keep NameID by default)
FirstName Name of the firstname attribute from IDP
LastName Name of the lastname attribute from IDP

 

 

Step 3: User Groups

  • Go to User Groups tab.Enter the following values
  • Group Attribute: Name of the Group attribute from IDP
  • You can check the Test Configuration Results to get better idea as to which values to map here

Under the Role Mapping Section configure which GROUP value coming in the SAML response needs to be mapped to which role.

The Group value coming in the SAML response will be mapped to the Role assigned here and the user will be assigned that role.

 

 

Step 4: SSO Settings

  • Go to SSO Settings tab.
  • Enable auto-redirect to IDP using Auto redirect to IDP
  • If auto-redirect is enabled then keep “Enable Backdoor ” checked for Emergency login .