Links

JumpCloud SAML setup

Enable your JumpCloud users to access Trelica with Single-Sign-On (SSO).

Adding Trelica to JumpCloud

Log in to JumpCloud and go to the SSO menu. Click the large teal "+" button.
Close the help message and then click Custom SAML App.
In the Display Label field enter Trelica and optionally choose a Logo or Color Indicator for the app. You can download a Trelica logo to use as the icon.
JumpCloud needs an Entity ID and ACS URL from Trelica. You can see these on the SAML Identity providers page in Trelica.
Log in to your Trelica site, and then go to Admin > Settings > Users > SAML providers:
Open Trelica in a new browser tab, as you will need to switch back to JumpCloud shortly.
Click the copy icon next to the SAML Entity ID to copy it to the clipboard.
Select the SSO tab JumpCloud and paste Ctrl + V the Entity ID into the IdP Entity ID and the SP Entity ID fields.
Return to the Trelica browser tab, copy the ACS URL to the clipboard and paste Ctrl + V it into the ACS URL field in JumpCloud.
Ensure that the SAMLSubject NameID is set to email, and the correct SAMLSubject NameID Format is selected from the dropdown (urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress)
Check the Sign Assertion box.
Now set the IdP URL - this can be anything you wish, but we recommend setting it to trelica.
Click Activate at the bottom-right.
You will be asked to confirm your new SSO connector instance. Do so:
You will receive a message confirming that the application has been created successfully.

Configuring Trelica

Select the new application with the checkbox, and then click export metadata. An XML file is downloaded.
You will need to add this XML metadata file to Trelica. Go back to your Trelica tab (or if you closed the tab, log in to Trelica and go to Admin > Settings> Users > SAML providers):
Click New. The New SAML Identity Provider dialog is displayed.
In the Name field enter JumpCloud and ensure Metadata type is set to Metadata:
Open the IdP metadata that you downloaded from JumpCloud in a text editor (e.g. Notepad or Visual Studio Code), and cut Ctrl + Xand paste Ctrl + V the contents of the file it into the Metadata field.
Click Create.

Testing

You can assign the Trelica application to either an individual test user, or to a group in JumpCloud. We recommend assigning to an individual user for testing, and to a group once you are happy that everything is working. In the example below we assign to a group.
From the menu select User Groups. Edit a Group and then open the Applications tab.
Check the box next to Trelica and click Save group.
Now log in to JumpCloud as a test user.
Make sure you are using a User login, not an Administrator login. You can toggle this at the top-left of the login page.
You should see the new Trelica application in the User portal:
Click the Trelica icon and after a short pause you should be logged in to Trelica.