Creating a Custom SAML Connection

  • Updated

Vanta customers using stand-alone products such as Vendor Risk management, Access Reviews, and Trust centers can now set up an SSO configuration independent of an IdP API integration. By leveraging the SAML connection, users will be able to login to Vanta through SSO without having to integrate Vanta fully with an identity provider.

 

Enabling a SAML Connection

  • From the left-hand navigation panel, select Settings
  • Select Login and security
  • Choose Manually configure SAML

Screenshot 2024-05-07 at 3.53.29 PM.png

  • This connection requires metadata configuration to enable as an SSO method. Refer to your IDP's documentation for further instructions:
    • Google
    • Okta
      • From the Okta admin portal, select Applications and then select Browse App Catalog
      • Locate the Vanta SAML App, select it, and Add Integration
      • Return to Vanta and copy the Domain ID field. This will be needed in the next step
      • Back in Okta, under Applications, select the Vanta application
      • Select the Sign On tab and then Edit
      • Find Advanced Sign-on Settings and paste in the Domain ID you copied from Vanta
      • Select Save
      • From the Sign On tab, click Copy next to the Metadata URL field. You will need this for the next step
      • Return to the new SAML connection page in Vanta and select Edit Configuration
      • Paste in the Metadata URL that you copied from Okta
    • OneLogin
    •  Jumpcloud
      • Log into the JumpCloud admin console: https://console.jumpcloud.com/login/admin
      • Click on SSO Applications on the left navigation panel
      • Click on + Add New Application
      • Search for Vanta and select it
      • Click Next
      • Optionally enter a description and then click Save Application
      • Back on the applications page, click on the newly created Vanta application
      • Click on the SSO tab
      • Change the ACS URLs (0) to the ACS (Consumer) Url provided by Vanta’s setup. It should look something like this: https://app.vanta.com/auth/sso/saml/:id/acs
      • Change the SP Entity ID field to the SP Entity ID provided by Vanta. It should look like: https://app.vanta.com/saml/:id
      • Click the Copy Metadata URL button in Jumpcloud
      • In Vanta, select Edit Configuration in the Identity Provider configuration section. Paste in the URL copied from Jumpcloud
  • As you configure the connection, your IDP may ask for Service provider details, and these can be found on the Manual SSO SAML configuration page in Vanta

Screenshot 2024-05-07 at 4.11.21 PM.png

  • After following the instructions from your IdP, you will be provided with a Metadata URL
  • Select Edit configuration from the Manual SSO SAML configuration page in Vanta

Screenshot 2024-05-07 at 4.02.38 PM.png

  • Add the Metadata URL provided by your IdP
  • Select Verify configuration

Screenshot 2024-05-08 at 5.03.17 PM.png