Skip to main content

Single Sign-On (SSO) setup

Support Team
Updated

This article explains how to configure Single Sign-On (SSO) for Soter products using SAML 2.0. Once enabled, your users will be able to sign in using your company’s identity provider (IdP), such as Azure AD, Okta, or Google Workspace.

The setup requires configuration in your IdP and a one-time metadata exchange with the Soter team.

Which Soter product are you setting up?

SSO configuration differs slightly depending on the product. Make sure you follow the correct section:

  • Soter AI
  • Soter Dashboard

Before you start

Make sure that:

  • Your IdP supports SAML 2.0
  • You have administrator access to your IdP
  • User email addresses in Soter match the email addresses in your IdP

Step 1: Create a SAML application in your IdP

Create a new custom SAML 2.0 application in your identity provider.

Common locations:

  • Azure AD: Azure Active Directory → Enterprise Applications → New application → Create your own application → Single sign-on → SAML
  • Okta: Applications → Create App Integration → SAML 2.0
  • Google Workspace: Apps → Web and mobile apps → Add app → Add custom SAML app

We recommend using a clear name, such as:

  • Soter AI SSO
  • Soter Dashboard SSO

Step 2: Configure SAML settings

Soter AI

Enter the following values in your IdP:

  • Single Sign-On URL (ACS URL)
    https://genius-core-us-1.soter.com/auth/v1/sso/saml/acs
  • Audience URI (Entity ID)
    https://genius-core-us-1.soter.com/auth/v1/sso/saml/metadata

Soter Dashboard

Enter the following values in your IdP:

  • Single Sign-On URL (ACS URL)
    https://sso.soteranalytics.com/api/oauth/saml
  • Audience URI (Entity ID)
    sso.soteranalytics.com

Optional reference:
https://sso.soteranalytics.com/.well-known/saml-configuration

Step 3: Configure user attributes

Set the following mappings in your IdP:

  • NameID format: Email Address or Persistent
  • Attribute mapping:
    • Emailemail

The email attribute is required for SSO to work.

Step 4: Share metadata with Soter

  1. Download the SAML metadata XML file from your IdP
  2. Email the file to help@soteranalytics.com
  3. Tell us which product you are enabling:
    • Soter AI
    • Soter Analytics Dashboard

We’ll complete the setup on our side and let you know when it’s ready.

Step 5: Test SSO login

Once you receive confirmation from us:

  1. Go to the Soter login page
  2. Select Sign in with SSO
  3. Authenticate via your IdP

If everything is configured correctly, you’ll be logged in automatically.

Troubleshooting

If SSO isn’t working as expected, check the following:

  • The Audience URI / Entity ID matches exactly
  • NameID format is set to Email Address or Persistent
  • The email attribute is mapped correctly
  • The IdP signing certificate is valid and not expired

Need help?

If you run into any issues, contact us at help@soteranalytics.com and include:

  • Your SAML metadata file
  • The Soter product you’re setting up
  • A short description of the issue

We’re happy to help.

Related to

Related articles

Comments

0 comments

Please sign in to leave a comment.