Skip to main content

Celonis Product Documentation

ADFS: Setting up SSO via SAML

Overview

  • How to configure SAML SSO via ADFS

Update ADFS Certificate

To update the ADFS certificate, you have to re-upload your updated IDP metadata file

  1. Download your IDP metadata file from the ADFS server

    eg: https://[adfs server name]/federationmetadata/2007-06/federationmetadata.xml

    22122058.png
    22122059.png
  2. Go to the “Admin and Settings” in your Team and navigate to Single Sign-On

    22122060.png

    open the settings of the ADFS connection by using the dropdown on the right corner of your screen

    22122061.png
  3. Upload your IDP metadata file from step 1 by Select file and then use the right metadata file and click on save.

    22122062.png
  4. Download the SP Metadata file from the Team from the same site.

  5. Open your ADFS Environment and navigate to Relying Party Trusts then click on “Add Relying Party trust” in the “Actions” selection.

    22122063.png
  6. Follow the steps in the wizard.

22122064.png

Upload the previously downloaded SP metadata file

22122065.png
22122066.png
22122067.png

These settings will be auto-filled by the uploaded SP metadata file

22122068.png
22122069.png

7. Add a Rule for your Relying Party trust and follow these steps during the wizard.

22122070.png

Set Claim rule template to “Send LDAP Attributes as Claims”.

22122071.png

Set Attribute store to "Active Directory" and add these Claims to the rules of the Relying Party trust.

22122072.png

To activate the configuration click on “Apply”.

22122073.png

8. Activate the SAML SSO in your Team settings by clicking on the radio button in the Single Sign-ON configuration.

22122074.png

As download: MISSING PDF