JumpCloud 3rd party authentication
  • 1 Minute to read

    JumpCloud 3rd party authentication


      Article Summary

      This article explains how to enable JumpCloud as a login option for end users. It outlines the steps needed to configure a custom OIDC App in the JumpCloud Administrator Console, including setting up redirect URIs, client authentication type and login URL. It also explains how to add an attribute mapping for email in order to complete the setup. Finally, it provides instructions on how to enable JumpCloud in NordLayer's Control Panel by entering the Client ID and Client Secret generated during setup.

      In order to enable JumpCloud as a login option for the end users, you will need to do the following:

      1. Log in to the JumpCloud Administrator Console at https://console.jumpcloud.com
      2. Go to USER AUTHENTICATION → SSO.
      3. Click (+ Add New Application) to configure a new application.
      4. Click Custom OIDC App.
      5. Enter a Display Label in the General Info tab. You can enter a description and adjust the logo shown for the application.
      6. Optionally, deselect Show this application in User Portal. Note: This will ensure users log in through NordLayer.
      7. Select the SSO tab.
      8. In the Redirect URIs field, enter:
      https://auth.nordlayer.com/v1/tokens/oauth/resolution
      
      1. Under Client Authentication Type, select Client Secret Post.
      2. In the Login URL, enter:
      https://cp.nordlayer.com/login
      
      1. Navigate down to Attribute Mapping (optional) → USER ATTRIBUTE MAPPING, and click Add Attribute.
      2. In Service Provider Attribute Name, type “email”.
      3. In JumpCloud Attribute Name, select email.
      4. Click activate.
      5. On the Application Saved window, copy the Client ID and Client Secret.
      Note:

      The Client Secret will only be shown once. Copy it to a secure location for future reference.

      1. Click Got It.

      Now once you’ve set up JumpCloud, go to the NordLayer Control Panel and do the following:

      1. Go to SettingsLogin methods.
      2. Under Single sign-on enable JumpCloud.
      3. Enter the Client ID and Client Secret generated in the previous section.
      4. Click Save.

      JumpCloud SSO

      Note:
      • Single-Sign-ON (SSO) will be enabled on Control Panel, VPN apps and Browser Extension
      • You can have multiple SSO options listed for authentication
      • It is possible to remove email & password authentication, leaving SSO as the only option to sign in

      Other available SSO providers include Azure, Google, Okta and OneLogin. You can set them up in the Service Management Portal by following these guides:

      Note: In case you have any questions or are experiencing any issues, please feel free to contact our 24/7 customer support team.


      Was this article helpful?