Single Sign-On allows logging into Uptick through services that use SSO such as Microsoft ADFS and Google Enterprise. To set it up, the system administrator that manages these accounts needs to perform the following steps:
Configure SSO (Uptick)
Click Control Panel > (Security) Single sign-on
โOn the next page two steps are outlined. Step 1 includes the Metadata URL, Success URL and Login URL to be provided to the identity provider.
The configuration details from the identity provider are entered in Step 2 - see the table below:
Identity Provider | Automatically populated by Uptick and shouldn't be changed unless you need multiple Uptick servers using a single identity provider configuration. |
Single sign-on URL | The SSO link of your identity provider. |
Metadata URL | Also known as the Issuer URL or entityID. |
Certificate | Paste the contents of the CA certificate from the identity provider. |
Whitelisted domains | Comma-separated list of domains allowed/expected to sign in with SSO. |
Require staff to log in with the identity provider | When checked, staff will need to login with SSO to access Uptick. Note: For app users, if SSO has been enabled after the user is already signed in, they'll need tap About > Sign Out to sign out of the app and follow the sign-in prompts. |
Below is what the SSO configuration looks like from the Uptick side in Control Panel > Single sign-on.
Configuring with Azure Active Directory
The following instructions are for configuring SAML based sign-on in Azure Active Directory. See each of the headings for instructions on setting up those respective sections. No input is required for Step 2 in the Azure SSO setup.
Basic SAML Configuration (Step 1 in Azure SSO configuration)
In the table below you can reference where to place the elements of the Uptick SSO configuration from Step 1 into the basic SAML configuration in Azure:
Uptick SSO Configuration (Step1) | Azure Basic SAML Configuration |
Metadata URL | Identifier (Entity ID) |
Success URL | Reply URL (Assertion Consumer Service URL) |
Login URL | Sign on UR |
SAML Signing Certificate (Step 3 in Azure AD setup)
Download the Certificate (Base 64), then copy the contents and paste it into the Certificate field in Step 2 of the Uptick SSO configuration.
Set up - configuring Uptick SSO to link with Azure AD (Step 4 in Azure AD setup)
The information from this section is placed Step 2 of the Uptick SSO configuration.
Azure set up | Uptick SSO Configuration (Step 2) |
Login URL | Identifier (Entity ID) |
Azure AD Identifier | Reply URL (Assertion Consumer Service URL) |