SSO with Other Platform SAML configuration

On this page

Introduction

SolarWinds Service Desk (SWSD) allows you to connect your SSO/SAML provider. You can choose to connect any standard SAML platform. (You may also connect simultaneously to Google in addition to one SAML platform.)

Detailed instructions are available for OKTA, One Login, Microsoft ADFS, or Microsoft Entra (Azure AD). If you elect to use a different platform, you will need to customize the parameter values to meet your organizational needs.

You may connect simultaneously through a SAML platform and Google.

Navigation

ITSM customers	ESM customers
Setup > Account > Single Sign-On > Other Platform	Organization > Setup > Account > Single Sign-On > Other Platform

Configure SSO with other platform

1. Provide the following information from the other platform:

   • Identity Provider URL (required field)
   • Logout URL
   • Error URL
   • SAML Issuer
   • Provider x509 certificate
     

   ESM customers need to edit all domain/account name references to redirect SSO to the organization level. For example:

   https://org-ACCOUNTNAME.samanage.com/saml/metadata
   or
   https://org.[DOMAINNAME]/saml/metadata

2. Add a check mark to the following boxes if appropriate for your organization.

   1. Create users if they do not exist.
   2. Redirect to the SAML login page when logging into SolarWinds Service Desk by default.

   3. Steps for ESM provisioning

      What you can provision is dependent on your provisioning provider.

      Step 1: Ensure provisioning at the organization level

      Before you begin, determine whether your organization has already performed any provisioning.

      • For those who previously provisioned before migrating to ESM

        Replace the token in the existing app with the token from the organization. Do not make any changes to the URL.

      • For those who have never provisioned

        Provision users to the organization level. If your provisioning provider allows you to provision roles, you can also do that here.

        1. Create a dedicated app in your provisioning provider platform.

        2. Use the organization token for the provisioning process.

        3. Use the organization URL.

      Step 2: Provision at the service provider level

      If you want service providers to be able to create roles and manage them at the service provider level, follow these steps:

      1. Create a dedicated app in your provisioning provider platform.

         • Use the organization token for the provisioning process.

         • Use the specific service provider organization URL.

      2. Repeat the role-provisioning process for any service provider that should be able to create and manage roles.

Related topics

• Single sign-on and provisioning
• Provisioning with Microsoft Azure (Entra Connect Cloud Sync)