How to Set Up Single Sign-On (SSO) for the Client Portal

Enterprise single sign-on (SSO) can be set up for your clients to use their company’s SSO when logging into the Client Portal.

Open

When SSO is configured, users will first need to enter their email as the username.

Instructions

Create an Internet User Template

This will be the template that will be used to create internet user records for new SSO users upon their first login with SSO.

See Internet Users.

Open

Submit Information to SSO Provider

Submit information to a new SSO identity provider. From the Single Sign-On (SSO) section, click the Centralized SSO Config icon to view the information.

Common setup requires a new SAML application created with your SSO provider. When setting up the SAML Application you will need the following information that can be found in the Centralized SSO Config:

• Assertion Consumer Service (ACS) URL

• Entity ID

The SAML Application may also require a Target Application URL. This URL is: https://nnnn0.cxtsoftware.net/Rapidship/#/sso-relay (replacing the nnnn with your CXT Software account number).

You may also need to map the Login credentials. By default, some SSO providers default this to “Username”, however, we use the “Email Address” as the username. This setting to remap the attribute can be called anything depending on your SSO provider, but it is commonly located in a section named something similar to “Attribute Mapping” and the setting itself may be labeled “saml_subject”. Please contact your SSO provider’s support for specific information.

Configure SSO

1. Go to Maintenance > Single Sign-On (SSO).

2. Click the + button in the top right.

See Single Sign-On (SSO)