Step 1: Start by navigating to the JumpCloud administrator console and select Applications.
Step 2: Click the Plus icon at the top left of the page and search for “SAML”.
Step 3: Select configure on the “SAML” option.
Step 4: In the IDP Entity ID field, enter a unique name to help identify the application. We suggest using "Continu".
Step 5: Generate and upload the IDP Private Key and Certificate Pair. For more information, please see JumpCloud SAML Configuration Notes.
Step 6: In the SP ENTITY ID Field type https://[yourdomain].continu.co/saml/consume
*replacing [your domain] with the subdomain of your Continu instance.
Step 7: Copy and paste the same value from Step 6 in the ACS URL field.
Step 8: In the SAML Subject NameID field, enter email.
Step 9: In the SAMLSubject NameID format field, enter urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
Step 10: Underneath USER ATTRIBUTES, select the Add Attribute button.
Step 11: In the name column type firstName and in the value column type firstname. *Please note - the casing is very important
Step 12: Click Add Attribute once more and type lastName for the name and lastname for the value paying very close attention to the letter casing.
Step 13: In the IDP URL field, append a unique name to the URL to set where Continu will send SAML requests and users will authenticate. Eg: continu-[your domain]
Step 14: Click the green Create button.
Step 15: From the applications page, select the Continu SAML application and click export metadata in the bottom right. This will download some xml metadata for the integration
Step 16: Open the xml file and copy everything after <ds:X509Certificate> and before </ds:X509Certificate>. This is your certificate and should be treated with care. It will need to be formatted with a header for the next step. This can be done by navigating to: https://www.samltool.com/format_x509cert.php
Step 17: Navigate back to your Continu instance, go to Admin > Settings > Integrations. Select SAML 2.0 from the integration list.
Step 18: Under SAML 2.0 Endpoint, paste the full URL you created in Step 13.
Step 19: Under X.509 Certificate, paste the formatted certificate from Step 16.
Step 20: Click Submit and the SAML Integration is now complete!
All you need to do is give your users permission to access the Continu application from JumpCloud.
For more information on JumpCloud, please see www.jumpcloud.com