Steps to configure SAML SSO for Contentful

About Contentful

Contentful is a cloud-based content management platform that enables teams to create, manage, and deliver digital content across websites, apps, and other channels from a single hub. It separates content from code, allowing developers and marketers to work independently and deliver consistent experiences across platforms.

The following steps will help you enable SSO for Contentful software from Identity360.

Prerequisites

1. The MFA and SSO license for Identity360 is required to enable SSO for enterprise applications.
2. Log in to Identity360 as an Admin, Super Admin, or Technician with a role that has Application Integration and Single Sign-on permissions.
3. Navigate to Applications > Application Integration > Create New Application, and select Contentful from the applications displayed.
   Note: You can also find Contentful from the search bar located at the top.
4. Under the General Settings tab, enter the Application Name and Description.
5. Under the Choose Capabilities tab, select the Single Sign-on check box and click Continue.
   General Settings of SSO configuration for Contentful.
6. Under Integration Settings, navigate to the Single Sign On tab, and click IdP Details. Copy the Login URL and Signing Certificate values, which will be used later during the configuration in Contentful.
   Integration Settings of SSO configuration for Contentful.

Contentful (service provider) configuration steps

1. Log in to your Contentful as an administrator.
2. From the left menu, click Organization settings & subscriptions.
3. Navigate to Access Tools → Single Sign-On (SSO).
4. From the Configure your identity provider section, copy the ACS URL, which will be used during identity360 configuration.
5. Scroll down to the Basic SAML Configuration section.
6. Select the appropriate Identity Provider from the drop-down.
7. In the SSO Redirect URL field, paste the Login URL value copied from Step 6 of prerequisites.
8. In the X.509 Certificate field, paste the Signing Certificate value copied from Step 6 of prerequisites.
9. Click Test connection.
10. In the SSO name field, type a friendly name for the connection.
11. Click Enable SSO.

Identity360 (identity provider) configuration steps

1. Switch to Identity360's application configuration page.
2. In the Account ID field, use the unique value of ACS URL value copied in Step 4 of Contentful configuration. For example, if the ACS URL is https://be.contentfull.com/sso/uacx34iejd/consume, then Account ID will be uacx34iejd.
3. Enter the Relay State parameter if necessary.
   Note: Relay State is an optional parameter used with a SAML message to remember where you were or to direct you to a specific page after logging in.
4. Click Save.
   Integration Settings of SSO configuration for Contentful.

To learn how to assign users or groups to one or more applications, refer to this page.

Your users will now be able to sign in to Contentful through the Identity360 portal.