Configuring SAML SSO for KissFLOW

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and Kissflow


  1. Log in to ADSelfService Plus as an administrator.

  2. Navigate to Configuration → Self-service → Password Sync/Single Sign-on.

  3. Search for Kissflow and select it.

  4. Click Download SSO Certificate link in the top-right corner of the screen.

  5. In the SSO/SAML Details pop-up screen that appears, copy the values of Login URL, Logout URL and SHA1 FingerPrint. We will need these values in later steps.

      NOTE : You could also download the SSO certificate and use its content instead of FingerPrint.

KissFLOW (Service Provider) configuration steps

  1. Now, log in to your KissFLOW administrator account.

  2. Click Admin from the topright corner.

  3. Click CHANGE in Preferences section.

  4. In Enable SAML based Single sign-on, toggle the pointer to Yes.

  5. Paste the Login URL you had copied in Step 5 of Prerequisite in Identify Provider URL.

  6. Paste the Logout URL you had copied in Step 5 of Prerequisite in Logout URL.

  7. Paste the SHA1 Fingerprint value you had copied in Step 5 of Prerequisite in Security Key.

  8. Click Save Configuration.

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ Kissflow configuration page.

  2. In the Domain Name field, enter the domain name of your email address. For example, if you use to log in to KissFLOW, then is the domain name.

  3. Enter a Description for the connection.

  4. In the Available Policies field, select the policies for which you wish to enable single sign-on.

  5. Click Save.

      Your users should now be able to sign in to Kissflow through ADSelfService Plus.

    For Kissflow, only SP-initiated flow is supported.

Go to Top
Copyright © 2020, ZOHO Corp. All Rights Reserved.