Set up SAML authentication in WCM by obtaining your public key, configuring your identity provider (ADFS or Azure), then entering the authentication URL and key in Configure > System Settings > Integration.
💡Quick answers
- What are the steps to enable SAML? (1) Extract your public key from your certificate, (2) configure your IdP (ADFS or Azure), (3) go to Site Manager > Configure > System Settings > Integration > SAML, enter the authentication URL and public key, validate, and save.
- How do I validate the public key? After entering the key, select Validate Key — this confirms the key is accepted and shows its expiration date.
- How far in advance should I renew the public key? Enter and validate the new key at least 14 days before the current one expires to ensure uninterrupted SAML service.
- How do I test SAML after setup? Sign out of your account, then sign back in using the SAML login option.
To begin the SAML authentication setup:
- Obtain the public key: View instructions.
- Then choose one of the following, depending on your identity provider. No other identity providers are officially supported.
- Set up SAML single sign-on in ADFS. View Instructions
- Set up SAML single sign-on in Azure. View instructions.
After completing the above steps, begin the SAML setup in your account.
- Navigate to Site Manager. Go to Configure > System Settings, then select the Integration tab.
- Navigate to the Sign-in Providers section, then select SAML.
- Enter the authentication URL.
- Enter the public key. Your public key will be a large numerical value that encrypts the data. View instructions to extract the public key.
- Select Validate Key to verify the expiration date of your public key.
- Next, enter a new public key and validate it to ensure the continuity of SAML service once your public key expires. Update a new public key 14 days before the public key expires.
- Select Save.
- Now, sign out of your account and then sign back in using SAML.