Configuring SAML SSO for Humanity

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and Humanity. 

Prerequisite

1. Login to ADSelfService Plus as an administrator.
2. Navigate to  Configuration → Self-Service → Password Sync/Single Sign On → Add Application, and select Humanity from the applications displayed.
   Note: You can also find Humanity application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.
3. Click IdP details in the top-right corner of the screen.
4. In the pop-up that appears, copy the Login URL, Logout URL and download the SSO certificate by clicking on the Download Certificate link.

Humanity (Service Provider) configuration steps

1. Login to Humanity with an administrator’s credentials.
2. Navigate to Settings → Integration → Single sign on.
3. Enable SAML
4. Paste the URL, copied in Step 4 of Prerequisite, in the Issuer URL and Remote Logout URL field.
5. Open the downloaded certificate as a text file. Copy and paste the content it in the X.509 Certificate text field.
6. Click Save.
7. Copy the SAML Login URL , we will need it in later steps.

ADSelfService Plus (Identity Provider) configuration steps

1. Now, switch to ADSelfService Plus’ Humanity configuration page.
2. Enter the Application Name and Description.
3. In the Assign Policies field, select the policies for which SSO need to be enabled.
   Note:ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy.
4. Select Enable Single Sign-On.
5. Enter the Domain Name of your Humanity account. For example, if you use johndoe@thinktodaytech.com to log in to Humanity, then thinktodaytech.com is the domain name.
6. Enter the SAML Redirect URL you had saved in Step 7 of Humanity configuration.
7. Click Add Application