Security Assertion Markup Language (SAML) is a standard for logging users into applications based on their sessions in another context.
SAML SSO works by transferring the user’s identity from one place (the identity provider) to another (the service provider). This is done through an exchange of digitally signed XML documents.
Configure SAML SSO
If you are already using SAML SSO such as Active Directory, in CakeHR this is super easy but you may need to contact your IT crew to set this up.
Your callback/reply URL will be
- Click on your name on the top right, then click Settings.
- On the settings menu click INTEGRATIONS, then click SAML.
There you will be asked to enter Entity ID, Authentication URL and Key fingerprint.
Here is an example:
We are expecting to find your employee's email address in SAML response "name id" field or in this attribute:
You may need to contact your IT support to help you to set this up.
Entity ID: This can be anything you want but we recommend to use "cake.hr", so you can easily identify it.
Authentication URL: This is the url to reach authentication page in your internal system.
If you have any further questions, please contact CakeHR support.