Single Sign-On SAML Integration - JumpCloud

If you have an Enterprise account in Row Zero, you can configure single sign-on (SSO) via SAML 2.0 using your organization's existing JumpCloud SSO provider. Row Zero supports SAML 2.0 for single sign-on with HTTP-POST binding.

Here is the information that you will need to configure a new Row Zero SAML application in JumpCloud:

  1. In the JumpCloud console, click on the "SSO Applications" link in the left hand panel: sso applications
  2. Click on the "+ Add New Application" button towards the top left: sso add new application
  3. On the new "Create New Application Integration" screen, press the "Select" link under "Customer Application": sso create new application
  4. When prompted for "Which application would you like to integrate?", click the "Next" button in the bottom right hand corner: sso application to integrate
  5. When prompted for "Select the features you would like to enable", check "Manage Single Sign-On (SSO)", "Configure SSO with SAML", and "Export users to this app (Identity Management)"; then click "Next": sso saml features
  6. When prompted for "Enter general info":
    • For Display Label type "Row Zero"
    • Click the Logo radio button
    • Dowload the Row Zero log by clicking this link
    • Click Choose a File and upload the Row Zero logo
    • Click the Save Application button sso general information
  7. Once the Row Zero application was successfully added, click on the "Configure Application" button: sso saml review
  8. On the "SAML Single Sign-On" page under the "Configuration Settings" section:
    • For SP Entity ID enter urn:auth0:rowzero:<CONNECTION_NAME>
    • For ACS URLs, enter Index 0 and Default URL as https://auth.rowzero.io/login/callback?connection=<CONNECTION_NAME>
    • For SAMLSubject NameID select email
    • For SAMLSubject NameID Format select urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
    • For Signature Algorithm select RSA-SHA256
    • For Sign select Response sso saml configuration settings
  9. On the "SAML Single Sign-On" page under the "Attributes" section:
    • Under User Attributes click the Add Attribute button so two inputs are displayed and enter the following:
      • Enter email and <USER_EMAIL_ATTRIBUTE> (typically email, user.email, etc.)
      • Enter name and <USER_DISPLAY_NAME_ATTRIBUTE> (typeically displayName, user.displayName, etc.)
    • Under Constant Attributes enter the following:
      • Enter email_verified and true sso saml attributes
  10. On the bottom right hand corner of the page, click the "Save" button: sso saml save
  11. Click on the "User Groups" tab and select any users or groups you wish to allow access to Row Zero and click the "Save" button. sso saml users and groups

Once you have configured a Row Zero SAML application in JumpCloud, contact us at Row Zero so that we can finish configuring the SSO integration on our end.

This is the information that we will need from you:

  1. Under the "SSO" tab in the "Configuration Settings" section, copy the "Metadata URL" and provide it to Row Zero: sso metadata url
  2. Under the "SSO" tab in the "Configuration Settings section, copy the "Idp URL" and provide it to Row Zero: sso idp url