Single Sign On with ActiveDirectory Federation Services (ADFS)

317c44983c8b32bee66e285197ebcd1a

Written By Diego Selzlein (Administrator)

Updated at February 3rd, 2018

Helpjuice supports SSO authentication with ADFS.

To make it work, you'll need to configure Helpjuice as a trusted party in your ADFS server. In some cases, you may use the XML Metadata below to do it, but you can also do it using their step-by-step wizard.

XML Metadata:

<?xml version="1.0" encoding="utf-8"?>
<EntityDescriptor ID="_271f377f-78d8-4133-8c46-a73c4936bb1f" entityID="https://helpjuice.com" xmlns="urn:oasis:names:tc:SAML:2.0:metadata">
<RoleDescriptor xsi:type="fed:ApplicationServiceType" xmlns:fed="http://docs.oasis-open.org/wsfed/federation/200706" protocolSupportEnumeration="http://docs.oasis-open.org/wsfed/federation/200706" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
<fed:TargetScopes>
<wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
<wsa:Address>https://helpjuice.com/</wsa:Address>
</wsa:EndpointReference>
</fed:TargetScopes>
<fed:PassiveRequestorEndpoint>
<wsa:EndpointReference xmlns:wsa="http://www.w3.org/2005/08/addressing">
<wsa:Address>https://helpjuice.com/</wsa:Address>
</wsa:EndpointReference>
</fed:PassiveRequestorEndpoint>
</RoleDescriptor>
</EntityDescriptor>


You also need to go to Helpjuice Settings > SSO and fill in the details about your ADFS server. For ADFS, you'll need to provide a Identity Provider URL, the SHA1 Fingerprint, Issuer (which is just your Helpjuice URL) and set Authn Context to blank.

In case you have any issues, feel free to get in touch and we'll be glad to help!

Was this article helpful?