Blanchard Exchange supports Single Sign On using SAML 2.0.
If you are specifically setting up SSO through Active Directory, please refer to this article.
To get started, first submit a request. Be sure to include your company name and include in your request that you wish to enable SSO using SAML 2.0. We may ask for additional details to correctly identify your account.
Refer to the generic details and claims mapping below. Once we have provided you with a Federation Metadata URL, we will ask for the URL of the SAML metadata.
Generic Details
Federation Metadata URL: Connect with our Help Desk to receive this information
Service Provider Entity ID (SP Entity ID): Connect with our Help Desk to receive this information
SP Single Sign On URL: https://service.learnifier.com/auth_saml/saml/SSO/alias/learnifier
Signing Algorithm: http://www.w3.org/2001/04/xmldsig-more#rsa-sha256 (SHA-256)
Claims Mapping
There is only one mandatory claim attribute needed, that is the e-mail attribute. All others are optional but improve the overall user experience.
IMPORTANT: When reviewing the details below, note that the "Description" column is the represented data point and not the name that should be used with your identity provider. For example, when review the mandatory email data point below, the "name" you enter into your identify provider needs to be one of the 2 listed claim names under the "Claim Name" column.
Description | Claim Name |
---|---|
E-mail (Mandatory) |
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress or http://schemas.xmlsoap.org/ws/2005/05/identity/claims/email |
User's full name |
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/displayname or http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name |
User's first name (given name) |
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname |
User's last name (surname) |
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname |