SAML Authentication
This page describes how to integrate an existing Identity Provider (IdP) with cybozu.com using SAML authentication.
When SAML authentication is enabled, users can single sign-on (SSO) into cybozu.com by using user accounts registered with IdPs such as Microsoft Entra ID and Okta.
IdPs That Can Be Integrated with cybozu.com
cybozu.com can be integrated with IdPs that support SAML 2.0.
When SAML authentication is enabled, cybozu.com acts as a Service Provider (SP) and uses SP-initiated SSO. The following bindings are used for the SAML request and SAML response:
- SAML request: HTTP Redirect Binding
- SAML response: HTTP POST Binding
Services That Support SAML Authentication
However, kintone guests cannot use SAML authentication.
Steps to Enable SAML Authentication
Configure both the IdP and cybozu.com by following the steps below.
IdP settings should be configured in advance.
STEP 1: Registering cybozu.com with the IdP
STEP 2: Configuring SAML Authentication for cybozu.com
If this setting is enabled, users will not be able to log in to the service using password authentication.
STEP 3: Enabling to Use Only SAML Authentication When Logging In
Setting Guide
For details on how to set SAML authentication using IdP such as Microsoft Entra ID or Okta, refer to the following page:
SAML Authentication with Other Companies' Services