JumpCloud SSO Setup
Open your EasyDMARC SSO portal: https://app.easydmarc.com/settings/security/saml2
Click on the Setup Button and confirm the ownership of your domain by adding a TXT record to your DNS zone
Now, head to Jumpcloud’s Admin portal and click on the SSO Applications in the User Authentication section
Click on the Get Started button and then choose the Custom Application
You can then type EasyDMARC and then click on the Create a Custom Integration button, then click Next
Choose the first option, “Manage Single Sign-On (SSO) and make sure to select Configure SSO with SAML, and also choose " Export users to this app (Identity Management).”
You can write EasyDMARC on the Display Label; the rest are optional. Then make sure to click on Save Application
Now click on Configure Application
Now, make sure to copy the Metadata URL and then paste it in the IDP Entity ID and then click on Save.
Important Note: Make sure to copy the Metadata URL and paste it into the IDP Entity ID field in JumpCloud first, then save it. After that, continue with the rest of the process, as this step is essential for SSO to function properly.
Now head back to your EasyDMARC SSO portal: https://app.easydmarc.com/settings/security/saml2
Paste the copied Metada URL from Jumpcloud as seen in the screenshot below, then click on Validate and Save
Important Note: In case you want to enforce SSO for all users, make sure to disable any OAuth logins by heading to Linked Accounts (Google, Microsoft, LinkedIn), and then proceed with the SSO setup.
This is what it should look like after clicking on Validate and Save
Now copy the Entity ID https://uac.easydmarc.com/realms/easydmarc and paste it in the SP Entity ID section
Now copy the ACS URL (SPA/Mobile) and paste it in the ACS URLs section, copy the 'ACS URL (Web/Redirect)' and paste it into Additional URL
The Final Result should look like this
Now scroll down to add the Attributes
firstName |
firstname |
lastName |
lastname |
|
|
After adding the attributes, scroll up, and in the Sign section, choose the Assertion and Response
Then select the Declare Redirect Endpoint and Send failure response to the Service Provider
Now, click on the User Groups to select the users
After completing the steps above, please follow the instructions below:
- Log out of your EasyDMARC account.
- Open an incognito/private browsing tab.
- Log in using the application created in your identity provider (IDP).
- You will be redirected to EasyDMARC, where you’ll see a prompt to link your account to SSO.
- Click the link to initiate the account linking process. (as shown in the First Screenshot)
- Check your inbox for an email from EasyDMARC (as shown in the Second Screenshot).
- Click the link in the email to complete the login.
Congrats, you’ve activated EasyDMARC SSO for your Jumpcloud. If you encounter any limitations, please reach out to our Support Team.