JumpCloud SAML setup
Enable your JumpCloud users to access Trelica with Single-Sign-On (SSO).
Log in to JumpCloud and go to the SSO menu. Click the large teal "+" button.
Close the help message and then click Custom SAML App.
JumpCloud needs an Entity ID and ACS URL from Trelica. You can see these on the SAML Identity providers page in Trelica.
Click the copy icon next to the SAML Entity ID to copy it to the clipboard.
Select the SSO tab JumpCloud and paste
Ctrl + Vthe Entity ID into the IdP Entity ID and the SP Entity ID fields.
Return to the Trelica browser tab, copy the ACS URL to the clipboard and paste
Ctrl + Vit into the ACS URL field in JumpCloud.
Ensure that the SAMLSubject NameID is set to email, and the correct SAMLSubject NameID Format is selected from the dropdown (urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress)
Check the Sign Assertion box.
Now set the IdP URL - this can be anything you wish, but we recommend setting it to trelica.
Click Activate at the bottom-right.
You will be asked to confirm your new SSO connector instance. Do so:
You will receive a message confirming that the application has been created successfully.
Select the new application with the checkbox, and then click export metadata. An XML file is downloaded.
Click New. The New SAML Identity Provider dialog is displayed.
In the Name field enter JumpCloud and ensure Metadata type is set to Metadata:
Open the IdP metadata that you downloaded from JumpCloud in a text editor (e.g. Notepad or Visual Studio Code), and cut
Ctrl + Xand paste
Ctrl + Vthe contents of the file it into the Metadata field.
You can assign the Trelica application to either an individual test user, or to a group in JumpCloud. We recommend assigning to an individual user for testing, and to a group once you are happy that everything is working. In the example below we assign to a group.
From the menu select User Groups. Edit a Group and then open the Applications tab.
Check the box next to Trelica and click Save group.
Now log in to JumpCloud as a test user.
Make sure you are using a User login, not an Administrator login. You can toggle this at the top-left of the login page.
You should see the new Trelica application in the User portal:
Click the Trelica icon and after a short pause you should be logged in to Trelica.