Steps to configure SAML SSO for Smartlook

About Smartlook

Smartlook is a product analytics and session-replay app that lets teams see exactly how users interact with their web and mobile apps—turning real user behavior into actionable insights.

The following steps will help you enable SSO for Smartlook from Identity360.

Prerequisites

1. The MFA and SSO license for Identity360 is required to enable SSO for enterprise applications.
2. Log in to Identity360 as an Admin, Super Admin, or Technician with a role that has Application Integration and Single Sign-on permissions.
3. Navigate to Applications > Application Integration > Create New Application and select Smartlook from the applications displayed.
   Note: You can also find Smartlook using the search bar located at the top.
4. On the General Settings tab, enter the Application Name and Description.
5. Under Choose Capabilities, select Single Sign-on and click Continue.
   General Settings of SSO configuration for Smartlook
6. On the Integration Settings tab, navigate to Single Sign On. Under Integration Settings, navigate to the Single Sign On tab, click IdP Details. You can configure SSO in Smartlook by uploading a metadata URL, manually configuring the settings, or automatically uploading a metadata file.
   1. For auto-upload of Metadata file: Download the metadata file to be uploaded during the configuration of Smartlook in Identity360 by clicking Download from the Metadata field.
   2. For manual configuration: Copy the Login URL, Logout URL, Entity ID, and Signing Certificate.
   Integration Settings of SSO configuration for Smartlook

Smartlook (service provider) configuration steps

1. Log in to Smartlook as an administrator
2. In Organization settings, click Single sign-on (SSO).
3. You can choose from three ways of uploading your SAML identity provider's metadata into Smartlook:
   1. Provide the Metadata URL value as instructed in these steps.
   2. Upload Metadata file downloaded from step 6a of prerequisites.
   3. Manually fill in Metadata details, including Entity ID, Login URL, Logout URL, and Signing Certificate copied from step 6b of prerequisites.
4. To complete the setup, enter at least one email domain used by your organization’s members in the Domains section.
   Note: Any user who signs in with an email address matching these domains will be automatically redirected to authenticate through your configured Identity360.
5. Turn on SSO for your users by enabling the toggle at the top of the Configuration section.

Identity360 (identity provider) configuration steps

1. Switch to Identity360's application configuration page.
2. Enter the Relay State parameter, if necessary.
   Note: Relay State is an optional parameter used with a SAML message to remember where you were or to direct you to a specific page after logging in.
3. Click Save.
   Integration Settings of SSO configuration for Smartlook

To learn how to assign users or groups to one or more applications, refer to this page.

Your users will now be able to sign in to Smartlook through the Identity360 portal.