Merchant Portal Single-Sign-On
Security Assertion Markup Language (SAML) Setup
Security Assertion Markup Language (SAML) is an open standard for exchanging authentication and authorization data between identity providers (IdPs) and service providers (SPs). Follow the steps below to configure SAML Single Sign-On (SSO) with Zentact:
Get Metadata and Certificate from the IdP
You'll need to collect some configuration metadata from the IdP to create a connection in Auth0:
| Field | Description |
|---|---|
| Sign In URL | The URL where SAML authentication requests are sent. This is also called the single sign-on (SSO) endpoint. |
| Sign Out URL | The URL where SAML logout requests are sent. This is also called the single logout (SLO) endpoint. |
| X509 Signing Certificate | The public-key certificate required by the SP to validate the signature of the authentication assertions that have been digitally signed by the IdP. Auth0 accepts the .pem and .cer formats. |
| User ID Attribute | Enter the attribute in the SAML token that will be mapped to the user_id property in Auth0. If not set, then the user_id will be retrieved from the following (in listed order): |
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifierhttp://schemas.xmlsoap.org/ws/2005/05/identity/claims/upnhttp://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
Share the client credentials and discovery URL
Securely provide these details to Zentact engineers using a trusted method for sharing sensitive information, such as the secret sharing feature in a password manager.
Test the Configuration:
Attempt to log in zentact merchant protal to ensure everything is set up correctly.