Once you set up SAML for Kintone via Teamstack, your users will be able to login to Kintone using their Teamstack credentails.
- Kintone (SP) initiated Single Sign-On
Set up SSO via SAML for Kintone
To set up SSO you first need to add a Kintone to Teamstack, assign it to yourself and then configure Kintone SSO with the SAML metadata from Teamstack.
Step 1: Add Kintone app to Teamstack
- Go to your Applications in Teamstack.
- Click "Add Application" in the top right corner.
- Search for "Kintone" and click "Add".
- Select this app to be a "SAML" app and enter your Kintone company name (If your URL is https://myCompany.kintone.com/, enter myCompany). Leave the "Relay State" input empty.
- In Organization's Applications overview, click on the newly created Kintone app. You will see all the details about this app.
- Click on "Users" and assign this app to yourself. You will need this in order to test whether SAML is working correctly for Kintone.
- Click on the "SAML Configurations" tab. Keep this page open, you will need these values once you configure the SAML settings in Kintone. You also need to download certificate by click "SAML certificate" button.
Step 2: Set up SAML in Kintone
- Log in to Kintone administrator page.
- Go to System Administration > Security > Login setting.
- Check Enable SAML authentication
- Copy the "Sign-in Page URL" value from step 1.7 and paste it to "Login URL" field.
- Input "https://app.teamstack.com/dashboard" to the "Logout URL" field.
- Click "Browse" and select the file you downloaded from step 1.7.
- Click "Save".
You can now test the login from Teamstack to Kintone. You need to have Kintone assigned to yourself in Teamstack. To test the connection, do the following:
- Open a new incognito window.
- Go to your Kintone Url (Ex: acme.kintone.com). You will be redirected to Teamstack.
- Login to your Teamstack account.
- You will be redirected to Kintone and will be logged in without the need to enter a password at Kintone.
Note: Kintone does not support Idp initiated Single Sign-On.