Skip to main content

Single Sign On (SSO)

Definitions

  • Identity Provider (IdP) - This is your Identity Provider (Google, Okta, Azure AD).
  • Service Provider (SP) - This is PagerTree.

SAML Required Attributes

  • Version - 2.0
  • Assertion Consumer URL (ACS) - https://app.pagertree.com/public/saml/callback?sp_entity_id=<sp-entity-id>
  • NameIDPolicy - urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
  • Encryption - false
  1. Enable "advanced mode".
  2. Navigate to the Idp Configs page.
  3. Click New SSO Config button.
  4. In the new Idp Config form:
    1. Copy the metadata xml (or metadata url) from your IdP to the PagerTree
  5. Configure your IdP with the provided SP (PagerTree) information.
    • Service Provider (PagerTree) Entity ID - Sometimes called the "audience" by the IdP.
    • Service Provider (PagerTree) Assertion Consumer Service (ACS) URL
    • Service Provider (PagerTree) Single Logout Service (SLO) URL
  6. Click Enable Button

Members of your account will now be required to sign-in using SSO via the Single Sign-On login page

Configuring PagerTree with SSO

  1. Enable "advanced mode".

  2. Navigate to the Idp Configs page.

  3. Click New SSO Config button.

    new sso config button

    New SSO Config Button

  4. In the new Idp Config form:

    1. Copy the metadata xml (or metadata url) from your IdP to the PagerTree.

      sso config form

      SSO Config Form

  5. Configure your IdP with the provided SP (PagerTree) information.

    • Service Provider (PagerTree) Entity ID - Sometimes called the "audience" by the IdP.

    • Service Provider (PagerTree) Assertion Consumer Service (ACS) URL

    • Service Provider (PagerTree) Single Logout Service (SLO) URL

      IDP

      Identity Provider (IdP) Data

  6. Click Enable Button.

    enable sso config button

    Enable SSO Config Button

Members of your account will now be required to sign-in using SSO via the Single Sign-On login page

Troubleshooting

info

If you are running into an issue with Azure (Entra) stating "Invalid Idp Response: Invalid Audience", this stems from Microsoft adding an extra "spn:" prefix to the Entity ID. Please email the PagerTree support team to resolve this issue.