API
The Gcore Customer Portal is being updated. Screenshots may not show the current version.
Reseller Support
Reseller Support
Chosen image
Reseller Support/Manuals/Configure SSO

Configure Single Sign-On (SSO) via SAML

You can give clients the ability to authorize using SSO (Single Sign-On) — a single sign-on technology with which a user can log in to a personal account using a corporate account.

To implement the technology, our systems use the SAML 2.0 XML protocol which is an open standard for the secure exchange of authentication and authorization data between the corporate identity provider (IdP) and the service provider (SP) of Gcore.

Configuring SSO in the Admin Panel

SSO in the Admin Panel

To allow your users to log in using SSO, in the admin panel:

1. Go to the "Authorization" tab.

2. In the "Login options" section, activate the "SSO Login" authorization method.

3. In the "Provider" section, enter your provider information.

Field Description
Name Your identity provider name. You can specify any name, the data from this field will be displayed only in the Admin Panel and do not affect the SSO settings.
Entity ID Unique URL for the connection to the identity provider. Provided by the IdP.
Domains The list of domain names will be used to redirect to the identity provider page for authorization via SSO.
SAML metadata XML file with the identity provider metadata. Provided by the IdP.

Activate "Force redirect to the Identity provider" if desired. If this option is enabled the user only has to enter a username and password to log in. If it is disabled the user has to enter the corporate domain additionally.

4. Using the checkboxes at the bottom, select the type of account for entering using the SSO — client’s one, administrator’s one, or both.

Data for the identity provider

After entering the identity provider information on the Gcore side, enter the Gcore information in the identity provider settings. All necessary metadata is available by link: https://api.gcore.com/iam/auth/saml2/metadata.

If you use a self-signed SSL certificate, you must enable the use of such certificates in the settings of the identity provider.

Authorization via SSO in the client's control panel

1. Click "Sign in with SAML SSO".

Sign in with SAML SSO

2. This step will appear if you have not activated the "Force redirect to the Identity provider" option. If you have done, it will not appear.

Enter the corporate domain for which SSO authorization is connected and click "Sign in with SAML SSO".

SSO authorization

3. Enter your username and password and log in.

 log in

Authorization via SSO in the Admin panel

1. Click "Sign in with SAML SSO".

Sign in with SAML SSO

2. This step will appear if you have not activated the "Force redirect to the Identity provider" option. If you have done, it will not appear.

Enter the corporate domain for which SSO authorization is connected and click "Sign in".

 SSO authorization

3. Enter your username and password and log in.

Was this article helpful?