Configuring SAML SSO for Quandora

    These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and Quandora.

    Prerequisite

    1. Log in to ADSelfService Plus as an administrator.
    2. Navigate to  Configuration → Self-Service → Password Sync/Single Sign On → Add Application, and select Quandora from the applications displayed.
      Note: You can also find Quandora application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.
    3. Click IdP details in the top-right corner of the screen.
    4. In the pop-up that appears, download the meta file by clicking on the Download Metadata file button.
      5. Idp Details

    Quandora (Service Provider) configuration steps

    1. Login to Quandora with an administrator’s credentials.
    2. Click on Profile at the top-right corner and selectstr Manage domain.
    3. Click on SAML2 Login from the left pane.

    4. Enable single sign-on using the toggle.

      Screenshot
    5. In the Identity Provider Metadata, select Copy / Paste IdP metadata. Open the meta file downloaded in Step 4 of Prerequisite and paste its content in the Metadata XML field.
    6. Click Save Changes to complete the configuration.

    ADSelfService Plus (Identity Provider) configuration steps

    1. Now, switch to ADSelfService Plus’ Quandora configuration page.
    2. Enter the Application Name and Description.
    3. In the Assign Policies field, select the policies for which SSO need to be enabled.
      Note: ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy.
    4. Select Enable Single Sign-On.
    5. Enter the Domain Name of your Quandora account. For example, if you use johndoe@thinktodaytech.com to log in to Quandora, then thinktodaytech.com is the domain name.
    6. In the SP Identifier field, enter the domain name of your Quandora account.Example: If your Quandora domain URL is https://test.quandora.com, your SP Identfier is test.
    7. In the Name ID Format field, choose the format for the user login attribute value specific to the application.

      8. Note: Use Unspecified as the default option if you are unsure about the format of the login attribute value used by the application

    8. Click Add Application.
    Note: For Quandora, only SP initiated flow is supported.