Configuring SAML SSO for Honey.is

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and Honey.is.

Prerequisite

Login to ADSelfService Plus as an administrator.
Navigate to Configuration → Self-service → Password Synchronizer..
Locate and click on Honey.is in the list of applications provided.
Click on the Download SSO Certificate link in the top-right corner of the screen.
In the pop-up that appears, copy the Login URL and download the SSO certificate by clicking on the Download SSO Certificate.

Honey.is (Service Provider) configuration steps

Log in to honey.is using your administrator credentials.
In the bottom-left corner, click the Account settings icon, and then click Admin.
Click the SINGLE SIGN-ON tab.
In the REMOTE LOGIN URL and ISSUER URL fields, paste the Login URL value you copied in Step 5 of Prerequisite.
In the REMOTE LOGOUT URL field, paste the Logout URL value you copied in Step 5 of Prerequisite.
In the IDENTITY PROVIDER CERTIFICATE field, Copy and paste the content of the SSO certificate file you downloaded in Step 6 of Prerequisite.
Toggle the Enable Single Sign-On? switch to ON.
Copy the ASSERTION CONSUMER URL and ENTITY ID values. We will need these in later steps.
Click SAVE SETTINGS.

ADSelfService Plus (Identity Provider) configuration steps

Now, switch to ADSelfService Plus’ Honey.is configuration page.
In the Domain Name field, enter the domain name of your email address. For example, if you use johndoe@Honey.is to log in to Honey.is, then Honey is the domain name.
Paste the ACS URL and Entity ID values you had copied in Step 8 of Honey.is configuration.
Provide a Description in the respective field.
In the Available Policies field, click on the drop-down box and select the policies for which you wish to enable single sign-on.
Click Save and log out of ADSelfService Plus.

For Honey.is, single sign-on is supported only for IDP initiated flow.