Security Assertion Markup Language (SAML) is a standard for logging users into applications based on their sessions in another context. 

SAML SSO works by transferring the user’s identity from one place (the identity provider) to another (the service provider). This is done through an exchange of digitally signed XML documents.

Configure SAML SSO

If you are already using SAML SSO such as Active Directory, in CakeHR this is super easy but you may need to contact your IT crew to set this up.

Go to Settings > Integration > SAML

There you will be asked to enter Entity ID, Authentication URL & Key fingerprint.

Here is an example:

We are expecting to find your employee's email address in SAML response "name id" field or in this attribute:
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

You may need to contact your IT support to help you to set this up.

Entity ID: this can be anything you want but we recommend to use "cake.hr", so you can easily identify it.

Authentication URL: this is the url to reach authentication page in your internal system.

For any questions, please contact CakeHR support.

Did this answer your question?