Configure SAML 


To enable SAML based enrollment in SureMDM, follow these steps:

1.  On the SureMDM Web Console, navigate to Settings > Account Settings > Device Enrollment Rules.

2.  Configure SAML Authentication settings and click Save.


Settings

Description

Advanced Device Authentication
  • If selected, the password prompt will appear on the server-side for authentication.
  • If not selected, the password prompt will appear on the device-side for authentication.

Device Authentication Type

Choose SAML Authentication from Device Authentication Type drop-down list.

SSO Type

Choose the SSO Type from the following:

  • ADFS
  • Azure AD
  • Okta
  • OneLogin
  • PingOne
  • Google G Suite

Service Identifier

Enter the Service Identifier from Obtain Federation Service Identifier. 

For ADFS: http://<Federation Service name>/adfs/services/trust

Sign On Service Url

Enter the Sign On Service Url from Obtain ADFS Service URL.

For ADFS: https://<Federation Service name>/adfs/ls/

Logout Service Url

Enter the Logout Service Url from Obtain ADFS Service URL.

For ADFS: https://<Federation Service name>/adfs/ls/

Note: Generally, the URL for Sign On Service Url and Logout Service Url will be the same.

Upload Certificate

Browse ssocert.pfx file generated and provide password used at the time of certificate generation. Refer to the steps in Generate Certificates.