{"id":87610,"date":"2023-06-05T13:10:20","date_gmt":"2023-06-05T17:10:20","guid":{"rendered":"https:\/\/jumpcloud.com\/?post_type=support&#038;p=87610"},"modified":"2024-06-11T15:21:39","modified_gmt":"2024-06-11T19:21:39","slug":"authorize-users-to-an-sso-application","status":"publish","type":"support","link":"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application","title":{"rendered":"Authorize Users to an SSO Application"},"content":{"rendered":"\n<p>Use JumpCloud SAML Single Sign On (SSO) to give your users convenient, but secure, access to all their web applications with a single set of credentials and use JumpCloud Identity Management (IdM)&nbsp;to provision, manage and deprovision users in those same applications.&nbsp;<\/p>\n\n\n\n<div class=\"wp-block-cgb-notification-card-wysiwyg notification-card important\"><div class=\"notification-card-content\"><div class=\"notification-card-icon\"><p><img decoding=\"async\" src=\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/important-icon.png\" \/><\/p><\/div><div class=\"notification-card-copy is-type-body-default\"><div><strong class=\"notification-card-type\">Important:<\/strong> \n<p>Users are implicitly denied access to applications, so after you connect an application to JumpCloud, you need to authorize user access to that application. You can authorize user access from the Application Configuration panel or from the User Groups Configuration panel.&nbsp;<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n<p><strong>Prerequisites<\/strong><\/p>\n\n\n\n<p>To successfully authorize users to an application, make sure the application integration or bookmark is configured, and:<\/p>\n\n\n\n<ul>\n<li>If using SSO, the application is configured, active, and the Single sign-on integration status is active (green)<\/li>\n\n\n\n<li>If using SCIM, make sure the Identity Management integration has been configured and the Identity Management integration status is active (green)<br>\u00a0<\/li>\n<\/ul>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Via the<\/strong> <strong>User Groups configuration panel<\/strong><\/h2>\n\n\n\n<ol start=\"1\">\n<li>Log in to the <a href=\"https:\/\/console.jumpcloud.com\">JumpCloud Admin Portal<\/a>.<\/li>\n\n\n\n<li>Navigate to <strong>USER MANAGEMENT &gt;<\/strong> <strong>User Groups<\/strong>.<\/li>\n\n\n\n<li><a><\/a>To create a new user group that needs to have access to the application:\n<ol start=\"1\" class=\"is-lower-alpha\">\n<li class=\"is-lower-alpha\">Click <strong>(+)<\/strong>,<strong> <\/strong>then&nbsp;select <strong>Create a Group of Users<\/strong><\/li>\n\n\n\n<li>Name the new user group, then select the <strong>Users<\/strong> tab<\/li>\n\n\n\n<li>Select the users you would like to add to the group<\/li>\n\n\n\n<li>Select the <strong>Applications<\/strong> tab<\/li>\n\n\n\n<li>Select the application you would like the user group to have access to&nbsp;<\/li>\n\n\n\n<li>Click <strong>Save<\/strong> <strong>Group<\/strong><\/li>\n<\/ol>\n<\/li>\n\n\n\n<li>To grant an existing group of users access to an application:\n<ol start=\"1\" class=\"is-lower-alpha\">\n<li>Select the group of users you would like to grant access to the application<\/li>\n\n\n\n<li>In the Groups Details panel, select the <strong>Applications<\/strong> tab<\/li>\n\n\n\n<li>Select the application you would like the user group to have access to<\/li>\n\n\n\n<li>Click <strong><strong>Save<\/strong> <strong>Group<\/strong><\/strong><\/li>\n<\/ol>\n<\/li>\n<\/ol>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Via the<\/strong> <strong>Application configuration panel<\/strong><\/h2>\n\n\n\n<ol>\n<li>Log in to the <a href=\"https:\/\/console.jumpcloud.com\">JumpCloud Admin Portal<\/a><strong>.<\/strong><\/li>\n\n\n\n<li>Navigate to <strong>USER AUTHENTICATION &gt;<\/strong> <strong>SSO<\/strong> <strong>Applications<\/strong>.<\/li>\n\n\n\n<li>Browse to and select the application to which you want to authorize user access.<\/li>\n\n\n\n<li>Select the <strong>User Groups<\/strong> tab.<\/li>\n<\/ol>\n\n\n\n<div class=\"wp-block-cgb-notification-card-wysiwyg notification-card tip\"><div class=\"notification-card-content\"><div class=\"notification-card-icon\"><p><img decoding=\"async\" src=\"\/wp-content\/themes\/jumpcloud\/assets\/images\/gutenberg-blocks\/tip-icon.png\" \/><\/p><\/div><div class=\"notification-card-copy is-type-body-default\"><div><strong class=\"notification-card-type\">Tip:<\/strong> \n<p>If you need to create a new user group, see<strong> <\/strong>the create a new user group&nbsp;steps&nbsp;in the preceding section<\/p>\n <\/div><\/div><\/div><\/div>\n\n\n\n<ol start=\"4\">\n<li>Select the check box next to the group of users you want to give access.<\/li>\n\n\n\n<li>Click <strong>Save<\/strong>.<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"<p>Use JumpCloud SAML Single Sign On (SSO) to give your users convenient, but secure, access to all their web applications [&hellip;]<\/p>\n","protected":false},"author":205,"featured_media":0,"template":"","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"support_category":[2855,2902],"support_tag":[],"coauthors":[2839],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Authorize Users to an SSO Application - JumpCloud<\/title>\n<meta name=\"description\" content=\"Learn how to give your users secure, frictionless access to all their web applications with a single set of credentials.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Authorize Users to an SSO Application\" \/>\n<meta property=\"og:description\" content=\"Learn how to give your users secure, frictionless access to all their web applications with a single set of credentials.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:modified_time\" content=\"2024-06-11T19:21:39+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/07\/202405-MISC-JumpCloudHelpCenter-SiteDisplay-min-2.png\" \/>\n\t<meta property=\"og:image:width\" content=\"890\" \/>\n\t<meta property=\"og:image:height\" content=\"525\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minutes\" \/>\n\t<meta name=\"twitter:label2\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data2\" content=\"joyjaswinski\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application\",\"url\":\"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application\",\"name\":\"Authorize Users to an SSO Application - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"datePublished\":\"2023-06-05T17:10:20+00:00\",\"dateModified\":\"2024-06-11T19:21:39+00:00\",\"description\":\"Learn how to give your users secure, frictionless access to all their web applications with a single set of credentials.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Support\",\"item\":\"https:\/\/jumpcloud.com\/support\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Authorize Users to an SSO Application\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Authorize Users to an SSO Application - JumpCloud","description":"Learn how to give your users secure, frictionless access to all their web applications with a single set of credentials.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application","og_locale":"en_US","og_type":"article","og_title":"Authorize Users to an SSO Application","og_description":"Learn how to give your users secure, frictionless access to all their web applications with a single set of credentials.","og_url":"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application","og_site_name":"JumpCloud","article_modified_time":"2024-06-11T19:21:39+00:00","og_image":[{"width":890,"height":525,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2024\/07\/202405-MISC-JumpCloudHelpCenter-SiteDisplay-min-2.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_misc":{"Est. reading time":"2 minutes","Written by":"joyjaswinski"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application","url":"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application","name":"Authorize Users to an SSO Application - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"datePublished":"2023-06-05T17:10:20+00:00","dateModified":"2024-06-11T19:21:39+00:00","description":"Learn how to give your users secure, frictionless access to all their web applications with a single set of credentials.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/support\/authorize-users-to-an-sso-application#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Support","item":"https:\/\/jumpcloud.com\/support"},{"@type":"ListItem","position":3,"name":"Authorize Users to an SSO Application"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/87610"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/support"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/205"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/87610\/revisions"}],"predecessor-version":[{"id":111392,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support\/87610\/revisions\/111392"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=87610"}],"wp:term":[{"taxonomy":"support_category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_category?post=87610"},{"taxonomy":"support_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/support_tag?post=87610"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=87610"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}