Skip to main content

Set Up Generic SSO/SAML Integration

Ariana Kemp
  • Updated

This topic will walk you through how to set up a generic SSO/SAML integration. This includes how to test the connection and add new users.

Disclaimer: If you change your domain, your access to Ironclad is prohibited. Contact Support (support@ironcladhq.com) for assistance before migrating a domain.


Skip To:

 

 

Set Up SSO in Ironclad

Required Ironclad Permissions: Admin

  1. Log in to your SSO provider as an admin.
  2. Navigate to an option to add a new SAML Application, and select SAML 2.0 ad the sign-in method.
  3. Enter the following information in the relevant fields:
    • Application Name: Ironclad
    • Description: Contract Management
    • Category: Business Intelligence or Legal
  5. Download the XML file.
  6. In Ironclad, click on your name located in the top right corner of Ironclad. Navigate to Company Settings > Integrations > SAML Sign-On Configuration.
  7. Click Add SAML Configuration. Click Show Additional IdP Settings. Copy the Callback URL.
  8. In the IdP Configuration XML field, upload the SAML metadata file. The Entry Point and Certification fields are now populated. Click Save.
  9. Click Show Additional IdP Settings. A link is available for you to download the XML configuration from Ironclad.IdP.jpeg
  10. In your SSO provider, upload the XML file to the metadata field. The Assertion Consumer Service (ACS) and Entity ID fields are populated with the Callback URL and the Identifier.
  11. Continue to the next step in your SSO provider’s configuration. In the Attribute Mapping step, click Add New Step:
    • Type email in the first field, then select Email in the Name or Literal field.
    • Type firstName in the first field, then select First Name in the Name or Literal field.
    • Type lastName in the first field, then select Last Name in the Name or Literal field.
  12. Click Finish. Your application is created.

 

 

Test Set Up on SSO Provider

  1. In your SSO provider, navigate to the Users tab.
  2. Provision a test user or colleague to access Ironclad. This user cannot be listed in the Ironclad “Everyone” group.
  3. Select the application you created and click Save.
  4. Instruct the newly provisioned user to click their invitation email to log in to Ironclad.
    • ​​​​​​​If the user is able to log in and see the Ironclad Dashboard, the configuration is a success. Reach out to your LE or CSM POC or contact support@ironcladapp.com for assistance migrating existing Ironclad users from Password Login to SSO Login.
    • If the user receive an error message, follow our troubleshooting guide.

 

 

Add New Users to Ironclad

We provide a First-Time Sign-In URL that can be found in two places:

  • On the SAML configuration setup page.AddUsers.jpeg
  • Click on your name located in the top right corner of Ironclad. Navigate to Company Settings > Users.Users.jpeg

 

 

Downloadable Images

LargeLogo.jpeg
SmallLogo.jpeg

​​​​​​​

 

Related articles