Symptom
We want to use the SAML-integration for our workspace and have to fill out the ACS URL / EntityID in our identity provider. Which one will be used by Signavio?
Resolution
Please use the following settings depending on which Signavio environment you are using and when your workspace was created:
(Replace the placeholder <workspace ID> with the workspace ID of your tenant. You can find the workspace ID in Process Manager Explorer - Help - Workspace information)
System | EU-system |
---|---|
ACS*-field (Recipient) | https://editor.signavio.com/api/v2/saml/v2/tenant/<workspace ID>/login |
EntityID | https://editor.signavio.com/api/v2/saml/v2/tenant/<workspace ID>/metadata |
System | AU-sytem |
---|---|
ACS*-field (Recipient) | https://app-au.signavio.com/api/v2/saml/v2/tenant/<workspace ID>/login |
EntityID | https://app-au.signavio.com/api/v2/saml/v2/tenant/<workspace ID>/metadata |
System | US-sytem |
---|---|
ACS*-field (Recipient) | https://app-us.signavio.com/api/v2/saml/v2/tenant/<workspace ID>/login |
EntityID | https://app-us.signavio.com/api/v2/saml/v2/tenant/<workspace ID>/metadata |
System | On-Premise (initially installed 13.3 or older) | On-Premise (initially installed 13.15 or newer) |
---|---|---|
ACS*-field (Recipient) | https://<baseURL>/intra/saml2endpoint (e. g. https://mycompanyurl.com/intra/saml2endpoint) | https://<baseURL>/api/v2/saml/v2/tenant/<workspace ID>/login |
EntityID | <baseURL> (e. g. mycompanyurl.com) | https://<baseURL>/api/v2/saml/v2/tenant/<workspace ID>/metadata |
Don't use a trailing slash at the end as those URLs will not be supported and can lead to some problems.
* Assertion Consumer Service
Keywords
KBA , BPI-SIG-CA-SEC-SAM , SAML 2.0 for SAP Signavio , How To