To add a layer of security and enhance user experience, we have enabled login via SAML 2.0.

This article will help you understand the following:

  1. How to enable SAML as a login method for your account?

  2. What are the various ways of logging in using SAML?

  3. What are the different apps supported for SAML?

  4. Why should one opt for a SAML login?

  5. What is the significance of using SAML in Skillate?

What is SAML?

By definition, SAML stands for Security Assertion Markup Language. It is an XML- based open standard for transferring identity data between an identity provider (IDP) and a service provider (SP). Identity Provider — Performs authentication and passes the user's identity and authorization level to the service provider.

Difference between SAML & SSO

Both authentication protocols serve a similar function to connect users and allow them to access the requested resource. SAML is an umbrella standard that covers federation, identity management, and Single Sign On (SSO). SAML activates Single Sign On (SSO) for browser-based applications.

Benefits of using SAML

  1. A single set of credentials to access all apps. Skillate can also be accessed with IDP. This adds a layer of enterprise security and eases the transition and adoption of all external applications.

  2. User management in Skillate made it easy- disabling their login would also directly impact Skillate login when an employee leaves the organization. No manual deactivation is required.

  3. Organizations can control who can access Skillate via the respective IDP.

Methods of using SAML 

Once configured, anyone in the organization can use a single set of username and passwords to log in to Skillate. However, we can call it two methods:

  1. IDP initiated flow: 

    1. In this case, you must log in to SAML IDP using the configured username and password.

    2. The following page will list all the available applications to log in using SAML.

    3. Click on Skillate, and you will be redirected automatically to the application.

  2. Service Provider initiated flow:

    1. In this case, you will have to navigate to the login page of Skillate: 

    2. You will find various options to log in. Enter your user name.

    3. You will be logged in automatically if you have logged in to the IDP.

    4. If you have not logged in to the IDP, you will be redirected to the IDP page to log in. Further, you will be redirected to Skillate automatically.

Applications that support SAML

Skillate supports almost every IDP provider which supports SAML 2.0 protocol, like OKTAOneLogin, Microsoft Active Directory, etc., to facilitate seamless SAML login.

Configuring SAML to login to Skillate

It is an add-on feature. Please reach out to your CSM to get it enabled for your organization.

  1. Upon enabling, navigate to Settings > Administration > Organization > Basic Details.

  1. Click on Edit.

  2. Locate the Authentication Method, and you will find SAML as one of the options.

  3. Select and you will find Configure SAML.

  4. Click on Download Service Provider Metadata.

  5. You can share it with your organization's IT team, and they will get configured with the IDP.

  6. Collect the Metadata Authorising Skillate from them and fill the fields in the SAML Configuration dialogue box.

  7. Click on Submit and you can log in to Skillate using the same credentials as used in your IDP.

You can identify the necessary field data to be filled as:

  • Identity Provider URL → entity ID (marked as A on the screenshot)
  • Web SSO Endpoint → Location (marked as B on the screenshot)
  • Identity Provider Certificate → Certificate (marked as C on the screenshot)
The Metadata Authorizing Skillate would look like this:

You'll need to find the certificate as highlighted on the screenshot. Please copy and paste it against the respective fields on the configuration dialogue box.