Configuring SAML SSO for DeskPro

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and DeskPro

Prerequisite

Log in to ADSelfService Plus as an administrator.
Navigate to Configuration → Self-service → Password Sync/Single Sign-on.
Search for DeskPro and select it.
Click Download SSO Certificate link in the top-right corner of the screen.
In the pop-up screen that appears, copy the values of Login URL, Logout URL and FingerPrint. We will need these values in later steps.
In the SSO/SAML Details pop-up screen that appears, click Download Metadata file and save it.

DeskPro (Service Provider) configuration steps

Now, log in to your DeskPro administrator account.
Select ADMIN found in the topright corner of the page and select Admin Home.
Select Admin → CRM → Auth & SSO in the left pane.
Click Add and select SAML Authentication in the window that opens.
Check Yes in Enabled?
Paste the Login URL you had copied in Step 5 of Prerequisite in SSO Single Logon field.
Paste the Logout URL you had copied in Step 5 of Prerequisite in SSO Single Logoff field.
Paste the Login URL used in Step 6 in the Metadata issuer XML meatadata URL field.
Upload the SSO certificate you had downloaded in Step 6 of Prerequisite by selecting Choose file option in x509 Certificate field.
Paste the Fingerprint value you had copied in Step 5 of Prerequisite.
Ensure that the checkbox in Sign Authentication Request is unchecked.
Ensure that the Name ID Format is email address.
You can give your own Login Button Text.
Click Install App / Save.

ADSelfService Plus (Identity Provider) configuration steps

Enter a Description for the connection.

In the Available Policies field, select the policies for which you wish to enable single sign-on.

Click Save.

Your users should now be able to sign in to DeskPro through ADSelfService Plus.

For DeskPro, both IdP-initiated and SP-initiated flows are supported.