[Notification] We're upgrading the JumpCloud Support Center the week of September 30th.

Support Center

Single Sign On (SSO) with RingCentral

Prerequisites:

  • A public certificate and private key pair are required to successfully connect applications with JumpCloud. After you activate an application, we automatically generate a public certificate and private key pair for you. You can use this pair or upload your own. 
  • In order to successfully complete the integration between JumpCloud and RingCentral, you must have an administrator account with RingCentral on a Premium or Enterprise plan.
  • The administrator's email address must be URL encoded E.g., for an email address of testing12+3@jumpcloud.com, the encoded email address is testing12%2B3%2540jumpcloud.com. To encode your email address:
    • Navigate to your URL Encoder of choice or use this URL Encoding tool: http://meyerweb.com/eric/tools/dencoder/.
    • Type your email address (which should be used by both your JumpCloud account and your RingCentral administrator account) into the blue field.
    • Select Encode.
    • Copy the generated value for use while configuring JumpCloud.

Notes:

  • After you connect an application to JumpCloud, you can connect it to user groups. Users in the groups you connect can access the application through SAML SSO. Learn how to connect user groups to applications.
  • If this connector was deployed prior to 01/30/2018, changes have been made to allow for a custom SP Entity ID and specifying the Signature Algorithm. To see these changes for existing connectors, open, save, and reopen the connector aside. Any connectors configured after this date will have the updated template.

Configure the JumpCloud SSO Application

  1. Access the JumpCloud Administrator Console at https://console.jumpcloud.com.
  2. Select Applications in the main navigation panel.
  3. Select the + in the upper left, scroll or search for the application in the 'Configure New Application' side panel, the select 'configure'.
  4. You can upload a service provider application's XML metadata file to populate SAML connector attributes for that application. The attributes populated by the metadata file may vary by the application. To apply a metadata file for the application you're connecting, click Upload Metadata. Navigate to the file you want to upload, then click Open. You'll see a confirmation of a successful upload. Be aware that if you upload more than one metadata file, you'll overwrite the attribute values applied in the previously uploaded file.
  5. In the IDP Entity ID field, enter https://YOURDOMAIN.TLD (e.g., https://thebestwidgets.com).
  6. For SP Entity ID, saml2:ringcentral:prod for US organziations, saml2:ringcentral:prodeuro for UK organizations, or enter the appropriate value provided by RingCentral.
  7. For ACS URL, leave the default for US organizations, change to https://ssoeuro.ringcentral.com/sp/ACS.saml2 for UK organizations.
  8. For Signature Algorithm, use SHA1 if SHA256 does not work.
  9. In the IdP-Initiated URL field, enter https://service.ringcentral.com/mobile/ssoStartup?email=ENCODED_EMAIL (replace ENCODED_EMAIL with your URL encoded admin email address per the above prerequisites.
  10. In the field terminating the IdP URL, either leave the default value or enter a plaintext string unique to this connector.
  11. (Optional) In the Display Label field, enter a label that will appear under the Service Provider logo within the JumpCloud User console.
  12. Select Activate.
  13. Select export metadata for RingCentral on the right-hand side of the page.

Configure the Service Provider

  1. Call the RingCentral Customer Care Center at 1-888-898-4591 and request that single sign-on be enabled for your account.
  2. Your case will likely be transferred to a Level 2 support specialist who will contact you via email.
  3. You will need to provide the support specialist with the metadata file you exported from JumpCloud and your public certificate per the above prerequisites.
  4. RingCentral support will configure SSO for your account and notify the account administrator upon completion.

Validate SSO authentication workflows

IdP Initiated

  • Access the JumpCloud User Console at https://console.jumpcloud.com.
  • Select the Service Provider icon.
  • This should automatically launch and login to the application.

SP Initiated

  • Navigate to your Service Provider application URL.
  • You will be redirected to log in to the JumpCloud User Portal.
  • The browser will be redirected back to the application and be automatically logged in.
 

Last Updated: Aug 19, 2019 01:20PM MDT

Related Articles
desk-forwarding@jumpcloud.com
https://cdn.desk.com/
false
desk
Loading
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
about
false
Invalid characters found
/customer/en/portal/articles/autocomplete