JumpCloud SSO
In this guide, you’ll learn how to set up JumpCloud in Coalesce.
You must be a JumpCloud Administrator to complete this process.
Before You Begin
Check Your Subdomain
You'll need to make sure you have a subdomain for Coalesce.
Your subdomain is the subdomain of your Coalesce instance. For example, if you login at https://testapp.app.coalescesoftware.io/
. Your subdomain is testapp
. You can also check your subdomain by going to your organizations single sign-on settings.
If the Subdomain box in your settings is blank, you need to create a subdomain for your organization.
JumpCloud Setup
-
In the JumpCloud console, under User Authentication, click SSO Applications > Add New Application.
-
Select Custom Application from the list.
-
Enable Manage Single Sign-On(SSO) and select Configure SSO with OIDC.
-
Enter the Display Label and any other information you want about the app. Make sure Show this application in User Portal is checked.
-
On the Configure Your Application screen, enter the Redirect URL or callback URI and the Login URL. The subdomain is the one you created for Coalesce in the SSO config.
- Callback:
https://yoursubdomain.app.coalescesoftware.io/login/callback
- Login:
https://yoursubdomain.app.coalescesoftware.io/login
- Callback:
-
Set Client Authentication Type to Public (None PKCE).
-
Scroll down and enable Attribute Mapping for both email and profile. This allows Coalesce to receive the email address and name so the account can be set up. The defaults can be left as is.
-
Click Activate. After activating, you'll get a popup with the Client ID you'll use in the Coalesce SSO configuration.
Coalesce SSO Configuration
-
Log into Coalesce as the Org Admin and go to Single Sign-On.
-
Enter in the following information:
- Authority: Other
- Subdomain: The one you created during "Before You Begin."
- Authorization Server:
https://oauth.id.jumpcloud.com
- OIDC Client ID: The Client ID from JumpCloud.
-
Logout and go to your Coalesce login page, for example
https://testapp.app.coalescesoftware.io/
. -
Click the Single Sign-On button to login. You'll be redirected to the JumpCloud login page if not logged in already, otherwise you will be logged in straight away.