Interfacing with SSOCircle SAML IdP

• Interfacing with SSOCircle SAML IdP
  • Register SSOCircle account
  • Create SAML2 Identity Federation Connection
  • Upload Authing SAML2 Identity Federation Connection Metadata to SSOCircle
  • Use SAML2 Identity Federation

Register SSOCircle account

Register (opens new window) an SSOCircle account and log in

Download (opens new window) IdP Metadata of SSOCircle

Create SAML2 Identity Federation Connection

Go to Application Console > Connect Identity Source > Corporate Identity Source, in the Connect SAML IdP area below, click "Connect SAML IdP".

In the drawer that pops up on the right, enter a connection identifier to uniquely identify this connection. Display name fill in SSOCircle, and fill in the Logo link: https://cdn.authing.cn/docs/ssocircle.png

The following information can be found in SSOCircle IdP Metadata.

Fill in the signature certificate of SSOCircle IdP in the input box of the visa verification certificate.

-----BEGIN CERTIFICATE-----
MIIEYzCCAkugAwIBAgIDIAZmMA0GCSqGSIb3DQEBCwUAMC4xCzAJBgNVBAYTAkRF
MRIwEAYDVQQKDAlTU09DaXJjbGUxCzAJBgNVBAMMAkNBMB4XDTE2MDgwMzE1MDMy
M1oXDTI2MDMwNDE1MDMyM1owPTELMAkGA1UEBhMCREUxEjAQBgNVBAoTCVNTT0Np
cmNsZTEaMBgGA1UEAxMRaWRwLnNzb2NpcmNsZS5jb20wggEiMA0GCSqGSIb3DQEB
AQUAA4IBDwAwggEKAoIBAQCAwWJyOYhYmWZF2TJvm1VyZccs3ZJ0TsNcoazr2pTW
cY8WTRbIV9d06zYjngvWibyiylewGXcYONB106ZNUdNgrmFd5194Wsyx6bPvnjZE
ERny9LOfuwQaqDYeKhI6c+veXApnOfsY26u9Lqb9sga9JnCkUGRaoVrAVM3yfghv
/Cg/QEg+I6SVES75tKdcLDTt/FwmAYDEBV8l52bcMDNF+JWtAuetI9/dWCBe9VTC
asAr2Fxw1ZYTAiqGI9sW4kWS2ApedbqsgH3qqMlPA7tg9iKy8Yw/deEn0qQIx8Gl
VnQFpDgzG9k+jwBoebAYfGvMcO/BDXD2pbWTN+DvbURlAgMBAAGjezB5MAkGA1Ud
EwQCMAAwLAYJYIZIAYb4QgENBB8WHU9wZW5TU0wgR2VuZXJhdGVkIENlcnRpZmlj
YXRlMB0GA1UdDgQWBBQhAmCewE7aonAvyJfjImCRZDtccTAfBgNVHSMEGDAWgBTA
1nEA+0za6ppLItkOX5yEp8cQaTANBgkqhkiG9w0BAQsFAAOCAgEAAhC5/WsF9ztJ
Hgo+x9KV9bqVS0MmsgpG26yOAqFYwOSPmUuYmJmHgmKGjKrj1fdCINtzcBHFFBC1
maGJ33lMk2bM2THx22/O93f4RFnFab7t23jRFcF0amQUOsDvltfJw7XCal8JdgPU
g6TNC4Fy9XYv0OAHc3oDp3vl1Yj8/1qBg6Rc39kehmD5v8SKYmpE7yFKxDF1ol9D
KDG/LvClSvnuVP0b4BWdBAA9aJSFtdNGgEvpEUqGkJ1osLVqCMvSYsUtHmapaX3h
iM9RbX38jsSgsl44Rar5Ioc7KXOOZFGfEKyyUqucYpjWCOXJELAVAzp7XTvA2q55
u31hO0w8Yx4uEQKlmxDuZmxpMz4EWARyjHSAuDKEW1RJvUr6+5uA9qeOKxLiKN1j
o6eWAcl6Wr9MreXR9kFpS6kHllfdVSrJES4ST0uh1Jp4EYgmiyMmFCbUpKXifpsN
WCLDenE3hllF0+q3wIdu+4P82RIM71n7qVgnDnK29wnLhHDat9rkC62CIbonpkVY
mnReX0jze+7twRanJOMCJ+lFg16BDvBcG8u0n/wIDkHHitBI7bU1k6c6DydLQ+69
h8SCo6sO9YuD+/3xAGKad4ImZ6vTwlB4zDCpu6YgQWocWRXE+VkOb+RBfvP755PU
aLfL63AFVlpOnEpIio5++UjNJRuPuAA=
-----END CERTIFICATE-----

Fill in the login address of SSOCircle IdP in the login URL:

https://idp.ssocircle.com:443/sso/SSORedirect/metaAlias/publicidp

Fill in the SSOCircle IdP logout URL in the logout URL:

https://idp.ssocircle.com:443/sso/IDPSloRedirect/metaAlias/publicidp

Leave other configurations as default.

Click "OK".

Download Metadata of Authing SAML2 identity federation connection: https://core.authing.cn/api/v2/connection/saml//metadata.

Upload Authing SAML2 Identity Federation Connection Metadata to SSOCircle

After logging in to SSOCircle, enter the left menu Manage Metadata > Add new Service Provider

Enter core.authing.cn at FQDN (excluding https://).

Check some attributes that need to be returned.

Copy the Authing SAML2 Identity Federation Connection Metadata to the text area.

Click "Submit".

Use SAML2 Identity Federation

In Control Panel> Applications> Application List, select any application and click "Experience".

On the login authentication page, you can see the SSOCircle SAML2 identity federation connection button just created, click it.

In the pop-up window, log in from SSOCircle SAML2 IdP:

After the login is successful, a successful prompt will pop up:

After that, it will call back to the callback address corresponding to the application, and carry the authorization code code and other information.

You can exchange code for the user's access_token and information. For details, please refer to Use code for token.