Other Single Sign-On Providers

Updated by Amy Thomas

Want to use Single Sign-On for your Criteria account but your provider isn't Okta, OneLogin or Azure? No problem, we've got you covered.

Below are the configuration settings for our generic Single Sign-On integration.

Criteria provided parameters

Please configure the following in your IdP:

  1. Entity ID (Audience URI): urn:amazon:cognito:ap-southeast-2_htcOeRF9C
  2. Assertion Consumer Service URL: https://app-au.auth.ap-southeast-2.amazoncognito.com/saml2/idpresponse

Customer provided parameters

The following attributes will be required by Criteria to set up your SSO integration:

  1. http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
    This should be the user’s email address.
  2. http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier
    This should be the user’s global unique identifier.
  3. http://schemas.xmlsoap.org/ws/2005/05/identity/claims/firstname
    This should be the user’s first name.
  4. http://schemas.xmlsoap.org/ws/2005/05/identity/claims/lastname
    This should be the user’s last name.
  5. SAML metadata xml file or URL

Next steps

Once you’ve configured the above parameters, please send all these attributes to Criteria. Our team will update your Criteria account and advise once we are ready to begin testing the integration.

Click here for more information regarding the next steps in the SSO integration setup process.

How did we do?