Configuring SAML SSO for Domo

    These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and Domo.

    Prerequisite

    1. Login to ADSelfService Plus as an administrator.
    2. Navigate to  Configuration → Self-Service → Password Sync/Single Sign On → Add Application, and select Domo from the applications displayed.
      Note: You can also find Domo application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.
    3. Click IdP details in the top-right corner of the screen.
    4. In the pop-up that appears, copy the Entity ID, Login URL and download the SSO certificate by clicking on the Download Certificate.
      5. Idp Details

    Domo (Service Provider) configuration steps

    1. Log in to Domo using your administrator credentials. (https://<subdomain>.domo.com)

    2. From the drop-down on the toppanel, click Admin.

      Screenshot

    3. Navigate to Security → Single sign on.

      Screenshot
    4. Paste the Login URL,copied in step 4 of Prerequisite in the the Identity Provider Endpoint URL field.
    5. Paste the Entity ID,copied in step 4 of Prerequisite in the the Entity ID field.
      6. Screenshot

    6. Upload the downloaded X-509 certificate in Certificate upload field.
    7. Test the connection for proper SSO integration.
    8. You can save the configuration.

    ADSelfService Plus (Identity Provider) configuration steps

    1. Now, switch to ADSelfService Plus’ Domo configuration page.
    2. Enter the Application Name and Description.
    3. In the Assign Policies field, select the policies for which SSO need to be enabled.
      Note: ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy.
    4. Select Enable Single Sign-On.
    5. Enter the Domain Name of your Domo account. For example, if you use johndoe@thinktodaytech.com to log in to Domo, then thinktodaytech.com is the domain name.
    6. Enter the SP Identifier of your DOMO account in the SP Identifier field. (https:// <SP_Identifier>.domo.com)
    7. In the Name ID Format field, choose the format for the user login attribute value specific to the application.

      8. Note: Use Unspecified as the default option if you are unsure about the format of the login attribute value used by the application

    8. Click Add Application
    Note: For Domo, single sign-on is supported for SP and IDP initiated flow.