Use an Identity Management Software (SSO Sign-In) to Log into SearchUnify

Organizations using SAML 2.0 based identity management software log into SearchUnify from their platform. This article explains the process. The process is divided into two parts: 

  1. Create an app in an SAML 2.0 identity management software
  2. Enter app details on the SSO Sign-in screen in SearchUnify

PREREQUISITES.

Keep a security certificate, which ends in .pem, handy. Contact SearchUnify to obtain it.

Create an App in Identity Management Software (IMS)

Although the IMS platform used for illustration is OKTA, the same steps are valid on other platforms as well.

  1. Log into IMS platform and open Add Applications.

  2. Click Create New App.

  3. Select Web in the Platform dropdown, check SAML 2.0 in Sign on method and click Create.

  4. Enter SearchUnify in the App name field and click Next. Uploading an app logo is not mandatory, but recommended. App Visibility settings will vary from organization to organization. They can be ignored for a minimal installation.

  5. On the SAML Settings screen, enter the following details and click Show advanced settings.
    • Single sign on URL: {{base URL}}/saml/hostedLogin (for search users) or {{base URL}}/saml/auth (for admin users)
    • Use this for Recipient URL and Destination URL: Checked.
    • Audience URI (SP Entity ID): {[base URL}}
    • Name ID format: Unspecified
    • Application username: Okta username

  6. Scroll down a little to find Enable single logout. Three new fields will appear when you check Allow application to initiate Single Logout. Enter {{base URL}}/saml/hostedLogout (for search users) or {{base URL}}/saml/logout (for admin users) in Single logout URL. Scroll down and click Next.

  7. In the Signature Certificate field, upload the security certificate received from SearchUnify. The next two fields (Authentication context class and Honor force authentication) will be populated if the upload was successful.

  8. Scroll down and click Next.

  9. Check an option in Are you a customer or partner? and click Finish.

  10. You will land on the SearchUnify app screen, where you can click View Setup Instructions.

The app creation was successful if you can see a similar screen.

Enter Details on the SSO Sign-in Screen

  1. Open Administration > Manage Users using left navigation.

  2. Move to SSO Sign in.

  3. Enter the details which you found after clicking View Setup Instructions.
    • Idp Display Name:  Enter any name of your choice.
    • Idp Identifier: Enter any name of your choice.
    • Idp Entity Id: Identify Provider Issue
    • SAML SSO Login URL: Identity Provider Single Sign-On URL
    • X.509 Certificate: X.509 Certificate
    • Saml Logout Url: Identity Provider Single Logout URL

  4. Click Save.

Your users can now log into SearchUnify. Each user who logs in from the identity management software is added to the Hosted Search Users list. For details, go to Hosted Search Users: View Users Logging into SearchUnify from an Identity Management Software

Last updatedFriday, February 26, 2021

Was this article helpful? Send us your review at help-feedback@searchunify.com