Configuring SAML SSO for AHA!

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and AHA!.

Prerequisite

  1. Login to ADSelfService Plus as an administrator.
  2. Navigate to  Configuration → Self-Service → Password Sync/Single Sign On → Add Application, and select AHA! from the applications displayed.
    Note: You can also find AHA! application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.
  3. Click IdP details in the top-right corner of the screen.
  4. In the pop-up that appears, copy the Login URL, SHA1 Fingerprint and download the SSO certificate by clicking on the Download Certificate link.

    IDP Details

AHA (Service Provider) configuration steps

  1. Login to AHA! with an administrator’s credentials.
  2. Navigate to Settings Icon → Account → Security and single sign-on.

  3. Choose SAML 2.0 Provider from the Identity provider dropdown.

    Screenshot
  4. Name your configuration.
  5. Choose Manual settings.
  6. Paste the copied URL, from Step 4 of Prerequisite, in the respective URL fields. 
  7. Select certificate fingerprint as SHA1.
  8. Click Enable to save the configuration.

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ AHA! configuration page.
  2. Enter the Application Name and Description.
  3. In the Assign Policies field, select the policies for which SSO need to be enabled.
    Note:ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy.
  4. Select Enable Single Sign-On.
  5. Enter the Domain Name of your AHA account. For example, if you use johndoe@aha.com to log in to aha, then aha.com is the domain name.
  6. Enter the sub-domain name of your AHA! portal in the SP Identifier field. Example format: https://<sp_identifier>.aha.io
  7. In the Name ID Format field, choose the format for the user login attribute value specific to the application.

    8. Note: Use Unspecified as the default option if you are unsure about the format of the login attribute value used by the application

  8. Click Add Application.
Note: For AHA!, both IdP-initiated and SP-initiated flows are supported.
Go to Top

Thanks!

Your request has been submitted to the ADSelfService Plus technical support team. Our technical support people will assist you at the earliest.

 

Need technical assistance?

  • Enter your email ID
  • Talk to experts
  •  
     
  •  
  • By clicking 'Talk to experts' you agree to processing of personal data according to the Privacy Policy.

Don't see what you're looking for?

  •  

    Visit our community

    Post your questions in the forum.

     
  •  

    Request additional resources

    Send us your requirements.

     
  •  

    Need implementation assistance?

    Try onboarding

     

Copyright © 2024, ZOHO Corp. All Rights Reserved.