Setting Method for X-point SAML Authentication

Settings for X-point

Settings in X-point must be done in advance.

You need to create an account with the same e-mail address used for SKUID account.

Please refer to the manual provided by X-point for the latest setting procedure.

 

Activate the SAML authentication.

1Log in to administrator panel.

2Click [System] at the upper right.

3Click [SAML Authentication Settings] on the left side menu of system administrator’s screen.

4Click [Change Settings] within SAML authentication service settings information.

5Enter the following items and click [Save] in the end.

    1. SAML Authentication Service
        Select [Use]

    2. SSO end point URL of IdP.
        Please enter the following URL:

        https://saml.sku.id/uas/saml2/SingleSignOnService


    3. The certificate SKUID uses for signin
g3. P
ublic key certificate IdP uses for signing   
        Download the certificate file from the following page. Click [Select File] to upload.

       The certificate SKUID uses for signing

 

SKUID Administrator Panel Settings

1Log in to SKUID and select the [App] menu on [Administrator Panel].

2Click [Add App] button at the upper right of the screen, and search for the application name [X-point] on the [Company Application Registration] screen.

3Click [X-pointSAML)]

4Fill in each of the following setting items and click [Register].

     1. [Application name] is optional. Please input here when changing display name. 

     2. [Log in URL] setting is not required on X-point. Please leave it as default.

     3. For [Name ID], the e-mail address of each members SKUID account will be used. Please leave it as default.

     4. Save the [Metadata] within the dotted line below as an XML file and upload it.

     ※Enter each of the following fields in red , and save it as an XML file.

---------------------------------------------------------------------------------------

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>

<EntityDescriptor entityID="Entity ID obtained from X-point " xmlns="urn:oasis:names:tc:SAML:2.0:metadata">

<SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">

<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>

<AssertionConsumerService index="1" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="ACS URL obtained from X-point">

</SPSSODescriptor>

</EntityDescriptor>

 ---------------------------------------------------------------------------------------

 

Settings of SKUID My Page

1Click [Add app] on [My page].

2On [Application registration] screen, select [X-point (SAML)], and click [Next] at the upper right of the screen.

3To change [Display name], enter a display name and click [Register].

4Please click on the application in the extension function and check whether the log in to X-point is successful.

 

Setting Method for X-point SAML Authentication

Settings for X-point

Settings in X-point must be done in advance.

You need to create an account with the same e-mail address used for SKUID account.

Please refer to the manual provided by X-point for the latest setting procedure.

 

Activate the SAML authentication.

1Log in to administrator panel.

2Click [System] at the upper right.

3Click [SAML Authentication Settings] on the left side menu of system administrator’s screen.

4Click [Change Settings] within SAML authentication service settings information.

5Enter the following items and click [Save] in the end.

    1. SAML Authentication Service
        Select [Use]

    2. SSO end point URL of IdP.
        Please enter the following URL:

        https://saml.sku.id/uas/saml2/SingleSignOnService


    3. The certificate SKUID uses for signin
g3. P
ublic key certificate IdP uses for signing   
        Download the certificate file from the following page. Click [Select File] to upload.

       The certificate SKUID uses for signing

 

SKUID Administrator Panel Settings

1Log in to SKUID and select the [App] menu on [Administrator Panel].

2Click [Add App] button at the upper right of the screen, and search for the application name [X-point] on the [Company Application Registration] screen.

3Click [X-pointSAML)]

4Fill in each of the following setting items and click [Register].

     1. [Application name] is optional. Please input here when changing display name. 

     2. [Log in URL] setting is not required on X-point. Please leave it as default.

     3. For [Name ID], the e-mail address of each members SKUID account will be used. Please leave it as default.

     4. Save the [Metadata] within the dotted line below as an XML file and upload it.

     ※Enter each of the following fields in red , and save it as an XML file.

---------------------------------------------------------------------------------------

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>

<EntityDescriptor entityID="Entity ID obtained from X-point " xmlns="urn:oasis:names:tc:SAML:2.0:metadata">

<SPSSODescriptor AuthnRequestsSigned="false" WantAssertionsSigned="true" protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">

<NameIDFormat>urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress</NameIDFormat>

<AssertionConsumerService index="1" Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="ACS URL obtained from X-point">

</SPSSODescriptor>

</EntityDescriptor>

 ---------------------------------------------------------------------------------------

 

Settings of SKUID My Page

1Click [Add app] on [My page].

2On [Application registration] screen, select [X-point (SAML)], and click [Next] at the upper right of the screen.

3To change [Display name], enter a display name and click [Register].

4Please click on the application in the extension function and check whether the log in to X-point is successful.