How to Set Up SSO with JumpCloud

TABLE OF CONTENTS

Follow these simple steps to set up an SSO with JumpCloud:

JumpCloud Settings

In the Admin Portal:

Add User Group

1. Open the User Groups tab and press Add button:


ojQwFGR (1)

2. Enter the Name and press Save:

a60IisW (1)

Add new User

1. Open the Users tab → press Add button → select Manual User Entry:


K4m34V9 (1)

2. Fill in the required fields on the Details tab.

The Company Email field in JumpCloud must match the Email Address in Precoro.


3. On the User Groups tab, select the created group.


4. Activate the User and press Save User:

dcdj8MV (1)

SSO Settings

1. Open your JumpCloud account → open the SSO tab → press the Add button:

2NN0S0Y (1)

2. Select the Custom SAML App option:


FWnwuLf (1)


3. Configure the New Application:

  • On the General Info tab, fill in the Display Label.
  • On the SSO tab, fill in the following:
1. IdP Entity ID: → enter any value (for example, “JumpCloud5”).
2. SP Entity ID: →  Entity ID.
3. ACS URL: → Assertion Consumer Service (ACS) (from https://app.precoro.com/backoffice/saml/login_check).

gGp7qwp (1)

4. SP Certificate: → download the certificate from Step 1: Download the Certificate on the SSO Settings page in Precoro and upload it into SP Certificate:

23TAd43 (1)

5. Enable the Sign Assertion and Declare Redirect Endpoint options:

PBw3euc (1)
  • On the User Groups tab, select the created group and press the Activate button below:

aSwzXpc (1)

  • Select the created application and download the JumpCloud Metadata by clicking Export Metadata.

Precoro Settings

On the SSO Settings page, fill in the following:

1. STEP 3: Identity Provider Issuer → IdP Entity ID.
2. STEP 4: Upload Metadata → input the Metadata you have downloaded from JumpCloud.
3. Press the Update button.

smOTi3p (1)

Troubleshooting

You may have problems logging in through Precoro "Company Login" (seeing the 404 error) if you have skipped Step 5 of the instruction: Enable the Sign Assertion and Declare Redirect Endpoint options during the Custom SAML App creation in JumpCloud.

In that case, you should:

1. Enable Sign Assertion and Declare Redirect Endpoint options → Press Save.
2. Export new Metadata (click the Export Metadata button).
3. On the SSO Settings page in Precoro, insert the new Metadata and click Update.