JumpCloud 3rd party authentication
  • 1 Minute to read

    JumpCloud 3rd party authentication


      Article summary

      How to enable JumpCloud SSO?

      In order to login to NordLayer apps or Control Panel, users can authenticate their identity via JumpCloud SSO.

      Here’s how to set up Jumpcloud SSO integration:

      1. Log in to the JumpCloud Administrator Console at https://console.jumpcloud.com
      2. Go to USER AUTHENTICATION → SSO.
      3. Click (+ Add New Application) to configure a new application.
      4. Click Custom OIDC App.
      5. Enter a Display Label in the General Info tab. You can enter a description and adjust the logo shown for the application.
      6. Optionally, deselect Show this application in User Portal. Note: This will ensure users log in through NordLayer.
      7. Select the SSO tab.
      8. In the Redirect URIs field, enter:
      https://auth.nordlayer.com/v1/tokens/oauth/resolution
      
      1. Under Client Authentication Type, select Client Secret Post.
      2. In the Login URL, enter:
      https://cp.nordlayer.com/login
      
      1. Navigate down to Attribute Mapping (optional) → USER ATTRIBUTE MAPPING, and click Add Attribute.
      2. In Service Provider Attribute Name, type “email”.
      3. In JumpCloud Attribute Name, select email.
      4. Click activate.
      5. On the Application Saved window, copy the Client ID and Client Secret.
      Note:

      The Client Secret will only be shown once. Copy it to a secure location for future reference.

      1. Click Got It.

      Now once you’ve set up JumpCloud, go to the NordLayer Control Panel and do the following:

      1. Go to SettingsLogin methods.
      2. Under Single sign-on enable JumpCloud.
      3. Enter the Client ID and Client Secret generated in the previous section.
      4. Click Save.

      JumpCloud SSO


      Note:
      • Single-Sign-On (SSO) will be enabled for the Control Panel, VPN apps, and Browser Extension
      • You can have multiple Single-Sign-On (SSO) methods enabled
      • It is possible to remove email & password authentication, leaving SSO as the only option to log in to the account

      Other available SSO providers include Azure AD, Google, Okta, and OneLogin. You can set them up in the Control Panel by following these guides:


      Note: In case you have any questions or are experiencing any issues, please feel free to contact our 24/7 Customer Support team.


      Was this article helpful?