Skip to main content
All CollectionsManaging Your Vendr AccountIntegrations
Connecting to an SSO provider (SAML 2.0)

Connecting to an SSO provider (SAML 2.0)

Enable your employees to securely and seamlessly sign in using Single Sign-On (SSO)

Patrick Payne avatar
Written by Patrick Payne
Updated over a week ago

This article applies to:

Admins

Vendr Intelligence and Procurement

Estimated time: Less than 15 mins

About this article

Enable your employees to sign in to Vendr using Single Sign-On (SSO). This article covers creating a SAML integration (i.e. Okta, Google, Microsoft, Jumpcloud, One Login) and connecting your SSO provider to Vendr.

How it works

When you use the SSO SAML integration employees will be prompted to log in to Vendr using single-sign-on instead of magic links. SAML provides a quick and secure method of passing user authentications and authorizations between your identity provider and Vendr.

‍

Benefits

  • Increase security by centralizing user access to Vendr through your SSO provider

  • Provide a quick and seamless way for employees to log into Vendr – log in emails

Requirements

  • Vendr Admin

  • SSO Provider Super Admin

Note

Installing the SSO integration does not sync users to Vendr for assigning steps in workflows. To sync users to Vendr you'll also need to configure an Identity Provider or HRIS integration.

Overview

To allow employees to log in to Vendr using your SSO provider, you will:

Create SAML Application

  1. To kick this off, we'll begin in your SSO provider's admin area. First, create a New Application. Choose the Web for Platform, and SAML 2.0 for the Sign on method. Click Create to continue.

  2. Next enter "Vendr" as the App name, and please feel free to include our logo pre-sized. Click Next to proceed to SAML Settings.

  3. Adding key information provided by Vendr, and providing Vendr with your metadata and cert file.

    1. In a new window, navigate to Vendr's SSO Settings page.

    2. Select the relevant SSO provider or choose Custom, and you'll be provided with key pieces of information: the Assertion consumer services (ACS) URL, Entity ID, and Metadata URL.

    3. Copy and paste each of those two values into their respective fields back in your SSO tab.

    4. You can leave all the other inputs as is, and click Next to continue.

      1. It may ask you if you are publishing a new app.

      2. Click Finish to proceed.

  4. The last step is to get the Metadata.xml content from your new application.

  5. Click View Setup Instructions and scroll to the bottom of the page.

    1. You should see an "Optional" section, that includes a text area that contains an XML document.

    2. Download the document

  6. Return to your browser tab with Vendr SSO Settings, open the XML document, and copy/paste the text from inside the document into the Identity Provider XML field in Vendr's SSO Setup page.

  7. Click Submit to complete the setup.

πŸŽ‰ Congrats! Your integration is now connected.

Enable SSO in Vendr

  1. Navigate back to Vendr's SSO set up page

  2. Paste your Single sign-on URL and Entity ID from your SAML application into the appropriate fields if required

  3. Upload the downloaded metadata file from the previous step to Metadata XML field

  4. Click Submit

πŸŽ‰ Congrats! Your integration is now connected.

Did this answer your question?