Salesforce IDP (10 min)
Completion requirements
01 Getting Started
This tutorial covers how to configure SSO with Salesforce as your identity provider. This allows your Salesforce users to log into a Titan project using their Salesforce credentials and pass user information from Salesforce into the Titan project.
02 Authenticate SSO
1. Navigate to your Settings tab and click the Integrations subtab.
2. Scroll down until you locate SSO and click Authenticate.
In the SSO Auth window, there are two values you will need when completing the configuration in Salesforce; Access URL and Service provider Entity ID.
2. Scroll down until you locate SSO and click Authenticate.
In the SSO Auth window, there are two values you will need when completing the configuration in Salesforce; Access URL and Service provider Entity ID.
03 Create a Certificate
1. Navigate to your Salesforce setup.
2. Search for Certificates and Key Management.
3. Click Create Self-Signed Certificate.
4. Add a Label for your certificate and click Save.
5. Download your created certificate.
2. Search for Certificates and Key Management.
3. Click Create Self-Signed Certificate.
4. Add a Label for your certificate and click Save.
5. Download your created certificate.
04 Create a Connected App
1. Search for App Manager.
2. Click on New Connected App.
3. Give your app a name and add a Contact's email address.
4. Enable SAML and copy-paste the corresponding SSO Auth details into the relevant fields.
5. Use the dropdown to choose the name ID format. This should be set to SAML2.0 persistent or transient.
6. Use the IdP certificate dropdown to select your created certificate. Click Save.
2. Click on New Connected App.
3. Give your app a name and add a Contact's email address.
4. Enable SAML and copy-paste the corresponding SSO Auth details into the relevant fields.
5. Use the dropdown to choose the name ID format. This should be set to SAML2.0 persistent or transient.
6. Use the IdP certificate dropdown to select your created certificate. Click Save.
05 Managing the App
1. Click the Manage button.
2. Scroll down to profiles and click Manage Profiles. These are profiles that can log into your project using their Salesforce credentials.
3. Enable the users you want to have access to your projects and click Save.
4. Scroll down to the Custom Attributes section and click New, we will configure the values that will be passed through to the project.
5. Add the attribute you want to configure. For this use case, we will configure two custom attributes.
First is the Session ID. This is the API session ID of the logged-in user that allows you to perform actions as the logged-in user as opposed to the integration user.
The second is the user's email.
The last thing to do in Salesforce is to copy the IdP-Initiated Login URL.
And paste it into the corresponding Titan SSO Auth SSO login URL field. Next, copy your downloaded certificate details and paste them into the Certificate field.
Make sure you test your config from this same window, then click Apply.
2. Scroll down to profiles and click Manage Profiles. These are profiles that can log into your project using their Salesforce credentials.
3. Enable the users you want to have access to your projects and click Save.
4. Scroll down to the Custom Attributes section and click New, we will configure the values that will be passed through to the project.
5. Add the attribute you want to configure. For this use case, we will configure two custom attributes.
First is the Session ID. This is the API session ID of the logged-in user that allows you to perform actions as the logged-in user as opposed to the integration user.
The second is the user's email.
The last thing to do in Salesforce is to copy the IdP-Initiated Login URL.
And paste it into the corresponding Titan SSO Auth SSO login URL field. Next, copy your downloaded certificate details and paste them into the Certificate field.
Make sure you test your config from this same window, then click Apply.
06 Enable SSO
1. Navigate to the Titan project you want to enable your SSO on.
2. Open the Project Settings and select the User Access tab.
3. Enable the SSO toggle switch and select the gear icon.
When you publish your project, the user will be asked to log in as a Salesforce user before they can access your Titan project.
2. Open the Project Settings and select the User Access tab.
3. Enable the SSO toggle switch and select the gear icon.
4. Use the dropdown to map any values from Salesforce to your project fields. Enable Use Salesforce session checkbox to perform actions as the logged-in user instead of the integration user.
When you publish your project, the user will be asked to log in as a Salesforce user before they can access your Titan project.