Generic SAML
Generic SAML (Security Assertion Markup Language) is a widely-used Single Sign-On (SSO) method that allows users to authenticate once and gain access to applications, by securely transmitting identity information between an identity provider (IdP) and a service provider (SP).
Requirements
- Be on a Convrs Enterprise price tier.
- Admin access to your SAML vendor account.
- Admin access to your Convrs account.
- Convrs agent emails exactly match their SAML vendor accounts
- Users and their Convrs roles will still need to be managed from the Convrs Agent Management page.
Configure Convrs
Navigate to the Single Sign-On tab within the Convrs admin panel (Administration→ Organization Profile). Then enable SSO. Then select Generic SAML as your SSO provider. You may also wish to turn on Enable Agents to log in with username and password as well as with SSO. If the wrong settings are used, you will lose access to your account. Once you are happy that your agents can log in via Generic SAML, you can turn this off.
You'll need to provide the Assertion URL and Entity ID to your SAML vendor and your vendor should provide the Signal Sign on URL and a security certificate that need to be added to Convrs. Depending on your SAML vendor, these field names may be called something different, and your certificate may be in an XML file. Please contact Convrs Support if you have an questions or problems setting up SAML.
If the option Use Role provided by SAML vendor is turned on Convrs will use the provided role. If the role does not exist in Convrs, then an error will be shown to the user and they will not be able to login.