Skip to main content
  1. Ironclad
  2. Integrations
  3. SSO/SAML

Set Up Generic SSO/SAML Integration

Ariana Kemp
  • Updated

This topic will walk you through how to set up a generic SSO/SAML integration. This includes how to test the connection and add new users.

Disclaimer: If you change your domain, your access to Ironclad is prohibited. Submit a request with our Support Team.

 

Set Up SSO in Ironclad

Required Ironclad Permissions: Admin

  1. Log in to your SSO provider as an admin.
  2. Navigate to an option to add a new SAML application, and select SAML 2.0 as the sign-in method.
  3. Enter the following information in the relevant fields:
    • Application Name: Ironclad
    • Description: Contract Management
    • Category: Business Intelligence or Legal
  4. Download the XML file.
  5. In Ironclad, click on your profile icon located in the top right corner of Ironclad. 
  6. Navigate to Company Settings > Integrations > SAML Sign-On Configuration.
  7. Click Add SAML Configuration
  8. Click Show Additional IdP Settings and copy the Callback URL.
  9. In the IdP Configuration XML field, upload the SAML metadata file. The Entry Point and Certification fields are now populated. 
  10. Click Save.
  11. Click Show Additional IdP Settings. A link is available for you to download the XML configuration from Ironclad.IdP.jpeg
  12. In your SSO provider, upload the XML file to the metadata field. The Assertion Consumer Service (ACS) and Entity ID fields are populated with the Callback URL and the Identifier.
  13. Continue to the next step in your SSO provider’s configuration. 
  14. In the Attribute Mapping step, click Add New Step:
    • Type email in the first field, then select Email in the Name or Literal field.
    • Type firstName in the first field, then select First Name in the Name or Literal field.
    • Type lastName in the first field, then select Last Name in the Name or Literal field.
  15. Click Finish. Your application is created.

Note:

The Identifier / Entity ID value should match what you see in Ironclad under Company Settings Integrations SAML Show Additional IdP Settings. For most NA1 production environments, this will be na1.ironcladapp.com.

 

Test Set Up on SSO Provider

  1. In your SSO provider, navigate to the Users tab.
  2. Provision a test user or colleague to access Ironclad. This user cannot be listed in the Ironclad “Everyone” group.
  3. Select the application you created and click Save.
  4. Instruct the newly provisioned user to click their invitation email to log in to Ironclad.

Note:

Upon login to Ironclad, if the user sees the Ironclad Dashboard, the configuration was a success. If there are users provisioned within Ironclad prior to setting up SSO, these users will remain password login users. Reach out to Ironclad Support for assistance migrating existing Ironclad users from password login to SSO login.

Add New Users to Ironclad

We provide a First-Time Sign-In URL that can be found in two places:

  • On the SAML configuration setup page. To access this, click on your profile icon located in the top right corner. Navigate to Company Settings > Integrations > SAML.AddUsers.jpeg
  • Click on your name located in the top right corner of Ironclad. Navigate to Company Settings > Users.Users.jpeg

 

Downloadable Images

LargeLogo.jpeg
SmallLogo.jpeg

​​​​​​​

 

Related articles

Related Articles

Want to learn more about this feature and more? Review the Related Articles. Here, we provide a list of articles curated just for you.

Related articles

Give Feedback