...
Our identity platform, HRID, supports SAML2, but we recommend using OpenID Connect if you support it. To get started, you need to contact us in order to get the necessary parameters for your configuration.
...
Before you start following this guide, you should check if there is a subpage containing a more specific guide for your identity provider of choice.
Exchanging metadata
When you want to set up SSO via SAML2, we need to configure some parameters both on our and and the customer’s (your) end.
...
In the same way, you need to send us your metadata URL. If you are using Azure AD, your metadata URL will look something like this: https://login.microsoftonline.com/<TenantDomainName>/FederationMetadata/2007-06/FederationMetadata.xml.
Required claims
Claim Name | Mapped to | Description | Is Required |
---|---|---|---|
<saml:NameID> | Unique External User Id | The saml:NameID element is needed to map the external user to an internal user in Talentech | True |
email or preferred_username | Email address / username | We will look for a claim named email and preferred_username to map from the external username to the internal Talentech username | False |
name | Full name | We will use the claim named name to map to the user’s full name | False |
...