Tesorio

The following steps will lead you through the process of setting up single sign-on through JumpCloud. You will use the Admin JumpCloud Portal to add an application and copy the metadata URL into Tesorio. This will allow all authorized users at your company to use JumpCloud for accessing Tesorio.

Log in to the <a href="https://console.jumpcloud.com/" rel="nofollow noopener noreferrer" target="_blank">JumpCloud Admin Portal</a>.

Navigate to User Authentication &gt; SSO Applications.

- Click Select on the Custom Application

1. Log in to the <a href="https://console.jumpcloud.com/" rel="nofollow noopener noreferrer" target="_blank">JumpCloud Admin Portal</a>.
2. Navigate to User Authentication &gt; SSO Applications.
3. Select + Add New Application
 - Click Select on the Custom Application
4. Click Next.

If you search for and select Custom SAML app, SSO features are pre-selected.

Select Manage Single Sign-On (SSO), select either the Configure SSO with SAML and click Next.

In the Display Label, type a name for the application Tesorio. This is the name that will be shown to users in the User Portal.

Optionally, you can enter a Description, adjust the User Portal Image and choose to hide or Show this application in User Portal. Under Advanced Settings, you can specify a value for the SSO IdP URL. If no value is entered, it will default to <a href="https://sso.jumpcloud.com/saml2/&lt;applicationname" rel="nofollow noopener noreferrer" target="_blank">https://sso.jumpcloud.com/saml2/&lt;applicationname</a>&gt;.

1. Select Manage Single Sign-On (SSO), select either the Configure SSO with SAML and click Next.
2. In the Display Label, type a name for the application Tesorio. This is the name that will be shown to users in the User Portal.
3. Optionally, you can enter a Description, adjust the User Portal Image and choose to hide or Show this application in User Portal. Under Advanced Settings, you can specify a value for the SSO IdP URL. If no value is entered, it will default to <a href="https://sso.jumpcloud.com/saml2/&lt;applicationname" rel="nofollow noopener noreferrer" target="_blank">https://sso.jumpcloud.com/saml2/&lt;applicationname</a>&gt;.

Click Save Application and then Configure Application.

Now its time to configuration the application to work with Tesorio.

You will want to enter <a href="https://dashboard.tesorio.com/saml/acs/" rel="nofollow noopener noreferrer" target="_blank">https://dashboard.tesorio.com/saml/acs/</a>

SAMLSubject NameID Format: urn.oasis:names:tc:SAML:2.0:nameid-format:persistent

Default RelayState: <a href="https://dashboard.tesorio.com/dashboard/" rel="nofollow noopener noreferrer" target="_blank">https://dashboard.tesorio.com/dashboard/</a>

Login URL: <a href="https://dashboard.tesorio.com/saml/acs/" rel="nofollow noopener noreferrer" target="_blank">https://dashboard.tesorio.com/saml/acs/</a>

Make sure the following 2 checkboxes are checked.

Add the following attributes this is case sensitive

Save the Application configuration at the bottom left of screen

Proceed to the SAML Tesorio setup page and enter the metadata url you copied

<a href="https://dashboard.tesorio.com/settings/saml_setup/" rel="nofollow noopener noreferrer" target="_blank">https://dashboard.tesorio.com/settings/saml_setup/</a>

After you have added the application to the group of users in JumpCloud there are two ways to test.

Head directly to the Tesorio SSO login page.

<a href="https://dashboard.tesorio.com/login/sso/?next=/login/success/" rel="nofollow noopener noreferrer" target="_blank">https://dashboard.tesorio.com/login/sso/?next=/login/success/</a>

Step 1

Step 2