Configuring SAML SSO for Honey.is

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and Honey.is.

Prerequisite

  1. Login to ADSelfService Plus as an administrator.
  2. Navigate to  Configuration → Self-Service → Password Sync/Single Sign On → Add Application, and select Honey.is from the applications displayed.
    Note: You can also find Honey.is application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.
  3. Click IdP details in the top-right corner of the screen.
  4. In the pop-up that appears, copy the Login URL, Logout URL and download the SSO certificate by clicking on the Download Certificate.
  5. IDP Details

Honey.is (Service Provider) configuration steps

  1. Log in to honey.is using your administrator credentials.
  2. In the bottom-left corner, click the Account settings icon, and then click Admin.

    Screenshot
  3. Click the SINGLE SIGN-ON tab.
  4. In the REMOTE LOGIN URL and ISSUER URL fields, paste the Login URL value you copied in Step 4 of Prerequisite.
  5. In the REMOTE LOGOUT URL field, paste the Logout URL value you copied in Step 4 of Prerequisite.
  6. In the IDENTITY PROVIDER CERTIFICATE field, Copy and paste the content of the SSO certificate file you downloaded in Step 4 of Prerequisite.

    Screenshot
  7. Toggle the Enable Single Sign-On? switch to ON.
  8. Copy the ASSERTION CONSUMER URL and ENTITY ID values. We will need these in later steps.

    Screenshot
  9. Click SAVE SETTINGS.

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ Honey.is configuration page.
  2. Enter the Application Name and Description.
  3. In the Assign Policies field, select the policies for which SSO need to be enabled.
    Note:ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy.
  4. Select Enable Single Sign-On.
  5. Enter the Domain Name of your Honey.io account. For example, if you use johndoe@thinktodaytech.com to log in to Honey.io, then thinktodaytech.com is the domain name.
  6. Paste the ACS URL and Entity ID values you had copied in Step 8 of Honey.is configuration.
  7. Choose the Name ID format that has to be sent in the SAML response. The Name ID format will specify the type of value sent in the SAML response for user identity verification.
  8. Click Add Application
Note: For Honey.is, single sign-on is supported only for IDP initiated flow.
Go to Top

Copyright © 2023, ZOHO Corp. All Rights Reserved.