Configure JumpCloud SSO for Profit.co

JumpCloud is an identity management service that eliminates username and password struggles. With your JumpCloud single sign-on, you can access Profit.co OKR software using your existing company credentials.

What can you do with Profit.co – Jumpcloud Integration?

  • With your Jumpcloud single sign-on, you can access Profit.co OKR software.
  • You can Import users from Profit.co to create a new Jumpcloud user

Step 1:

To enable JumpCloud Single Sign-On.

JumpCloud Login

Login to the Link – https://console.jumpcloud.com/login/admin

Step 2:

After logging in, go to the left navigation bar and select USER AUTHENTICATION → SSO

JumpCloud User Authentication

Step 3:

Click on the green plus icon to configure a new application.

lJumpcloud SSO Green Plus

Step 4:

In the SSO Applications page, click on the Custom SAML App to create a customizable SAML application.

Jumpcloud Custom SAML App

Step 5:

In the General Info tab, Provide the Display Label, Description and the Display Option.

Note: You can set the display label as “JumpCloud – Profit.co SSO App”. Grab the logo from here and upload it.

New application

Step 6:

Go to the SSO tab and enter the following information given below by Profit.co

IdP Entity Id Provide your IdP Entity ID
SP Entity Id (Entity Id of Profit.co) urn:profit-prod:profit-prod-sso-auth
ACS URL https://app.profit.co/app/loginservlet?a=authorize&appCode=profit&integrationCode=PROFIT_SAML_SSO
SP Certificate Optional
SAML Subject NameID email
SAML Subject NameID Format urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
Signature Algorithm RSA-SHA 256
Sign Assertion Checked
User Attributes
Service Provider Attribute Name JumpCloud Attribute Name
username email
sso

Step 7:

Go to the User Groups tab, search and select the user group which is configured with Profit.co Users.

Jumpcloud all Users

Finally, click on the Activate button.

Step 8:

Click on jumpcloud Export Metadata

jumpcloud_export_metadata

Copy the Entity Id and X509 Certificate without double quotes

entity_id

Paste the Entity Id and X509 Certificate in Setting→Integration→ profit.co SAML SSO page (Without space)

profit.co_saml_sso_page

Step 9:

Open a new tab and navigate to JumpCloud user login.

User Link – https://console.jumpcloud.com/login

JumpCloudapplication login

In the Applications, you’ll be able to see the Profit.co SSO application.

Jumpcloud Profit.co App

Step 10:

By clicking on the JumpCloud – Profit.co SSO App you’ll be redirected to the Profit.co application.

Profit.co all my OKRs

 

Configure JumpCloud User Provisioning for Profit.co

The following provisioning features are supported:

  • Create Users
    Users assigned to the Profit.co App will be created in Profit.co User Management.
  • Update Users
    Updates made to the user’s profile in JumpCloud will be pushed to Profit.co User Management.
  • Deactivate Users
    Suspending the user in JumpCloud or removing the user from the User Group of Profit.co App will deactivate the user in Profit.co User Management.
  • Reactivate Users
    User accounts can be reactivated in Profit.co by assigning the removed users back to the Profit.co User Group in JumpCloud.

Requirements

You need Admin account access in Profit.co to get API Key and SCIM Key to form the SCIM Token key.

Step 1:

Open the Custom SAML App created for Profit.co in JumpCloud.

JumpCloud Profit.co SSO App

Step 2:

In the Identity Management tab, Select SCIM V2.0 then provide the SCIM base URL and Token key.

SCIM base URL should be either https://api.profit.co/app/rest/platform/auth/scim/v2 or https://eu2-app.profit.co/app/rest/platform/auth/scim/v2 based on the Region of your Profit.co Application.

To generate the Token key in Profit.co, go to Settings → Security → API Access and get the values of API Key and SCIM Key.

Form the Token key in the following Format.

API_KEY:SCIM_KEY

JumpCloud Identify Management

Step 3:

Click on the Test Connection button to validate the SCIM connection.

JumpCloud Identify Management

Step 4:

In the Group Management section, disable the toggle named “Enable management of User Groups and Group Membership in this application” and click on the Activate button

JumpCloud enable Management

Step 5:

After successful activation, click on the Save button.

Identify Management Integration

The supported attributes are,

  • Given name
  • Family name
  • Email Address
  • Active Status