Logging In With Single Sign-on (SSO Integration)

Admin users can connect their Single sign-on (SSO) integration (i.e. cloud Identity Providers such as Okta or AzureAD) to the Aurora ASM platform using its SAML Configuration APIs.

Creating an Application

To enable an SSO Integration, your Identity Provider will create an Application. This will require the following configuration information:

Single Sign-on URL:

Replace the 0's with your Organization ID

https://sevco.us.auth0.com/login/callback?connection=00000000-0000-0000-0000-000000000000

Audience Restriction (or Entity ID):

urn:auth0:sevco:00000000-0000-0000-0000-000000000000

Additionally, you will need to add a Claim. The claim's Name should equal email and its Value should reflect the naming scheme used by your Identity Provider to qualify a user's email address (i.e. user.email).

Enabling the SSO Integration

After the Application has been created, your Identity Provider will provide an X.509 Certificate as well as a Single Sign-on URL. These will be used when calling the API to enable the SSO Integration.

For additional documentation about Aurora ASM's SAML Configuration APIs, please email us at [email protected].