Set up SAML with JumpCloud#
This article explains how to set up SAML with JumpCloud for an organization in Aiven. For more information on SAML and instructions for other identity providers, see the Set up SAML authentication article.
Prerequisite steps in Aiven Console#
In the organization, click Admin.
Click Add authentication method.
Enter a name and select SAML. You can also select the teams that users will be added to when they sign up or log in through this authentication method.
You are shown two parameters needed to set up the SAML authentication in JumpCloud:
Configure SAML on JumpCloud#
In the JumpCloud admin console, go to SSO.
Select Custom SAML App.
Set the IdP Entity ID.
Audience URI (SP Entity ID)to the
Metadata URLfrom the Aiven Console.
ACS URLto the one from the Aiven Console.
Default RelayStateto the homepage of the Aiven Console, https://console.aiven.io.
Add an entry in Attribute statements with
Service Provider Attribute Nameof
JumpCloud Attribute Nameof
Login URLto the
ACS URLfrom the Aiven Console.
In User Groups, assign the application to your user groups.
Download the certificate.
Finish the configuration in Aiven#
Go back to the Authentication page in Aiven Console to enable the SAML authentication method:
Select the name of the JumpCloud method that you created.
In the SAML configuration section, click Edit.
Toggle on IdP login.
Add the configuration settings from JumpCloud:
SAML IDP URLto the
IDP URLfrom JumpCloud.
SAML Entity IDto the
IdP Entity IDfrom JumpCloud .
Paste the certificate from JumpCloud into the
Click Edit method to save your changes.
Toggle on Enable authentication method at the top of the page.
You can use the Signup URL to invite new users, or the Account link URL for those that already have an Aiven user account.
If you have issues, you can use the SAML Tracer browser extension to check the process step by step.