Single Sign-On configuration
How to set up SAML for your Survicate account
Vlada avatar
Written by Vlada
Updated over a week ago

This article will guide you through enabling a Single Sign-On configuration in your account.

SAML SSO gives users a centralized and secure way of controlling access to their organizations. When you join an organization that uses SAML SSO, you sign in through the organization's IdP, and your existing Survicate account is linked to an external identity that belongs to the organization.

Please note that this article is created for universal purposes. Once you need OneLogin or Okta help specifically, please visit specific links.

โ—๏ธThis feature is available on the Team Insights plan. Please check out our Pricing page for more information or talk to us on chat ๐Ÿ‘‰.

How to enable a Single Sign-On configuration?

Before you start, you need to make sure you are the owner of your organization. Only account owners can set up SAML Authentication.

Please go to Settings > SAML Authentication and click Enable SAML authentication toggle. Leave the tab open, as you'll need the data from here.

Identity Provider (IdP) setup

1. In your Single Sign-On provider, add a new app.

2. Under SAML Settings, you will likely be asked to provide Single-sign-on URL /ACS (Consumer) URL and Audience URI.

You can find a Single sign-on URL under ACS (Consumer) URL in Survicate:

While Audience URI is the same URL, but it has a different ending with /metadata instead of /acs.

So if your Single sign-on URL or ACS (Consumer) URL is:

Your Audience URI will be:

3. In the end, your settings should look like this:

Survicate setup

1. Go to the SSO provider's configuration page with Single Sign-On URL, Provider Issuer, and X.509 Certificate:

2. In the Survicate SAML Authentication tab, paste the Provider Issuer to Issuer field, Single Sign-On URL to Sign-on URL, and X.509 Certificate to Public certificate.

3. Once you click Save configuration you will get a list of recovery codes.

โ— Please save them; you will need those to bypass the Single Sign-On when you don't have access to the SAML provider anymore.ย 

๐Ÿ“ž If you have any questions or need assistance - feel free to reach out to our team via chat or email:

Did this answer your question?