App Distribution for iOS, Android and Windows
DashboardStart for free
  • Updraft App Distribution Documentation
  • Microsoft App Center Alternative
    • Windows App Distribution
    • App Center Migration Tool
  • Welcome to Updraft!
    • What is Updraft?
  • Quickstart
    • Register your Organization
    • Your first app project
      • Upload your first app versions (builds)
      • Install your app
  • Dashboard
    • Create Projects
    • Latest received Feedbacks
    • Documentation
    • Usermanagement
      • Permission Groups
      • Tester Dashboard
    • Profile & User Account
      • Profile Preferences
        • Two-factor authentication
      • Personal token
      • Notifications
      • Organizations
      • Account Settings
      • Plan & Billing
        • Free Plan
        • Paid Plan (Pay-As-You-Go)
      • Security (Single Sign-On)
        • Single Sign-On with Okta
        • Single Sign-On with Google Worspace
        • Single Sign-On with Microsoft Entra
        • Single Sign-On with JumpCloud
        • Single Sign-On with Ping Identity
        • Custom SSO (SAML)
      • Developer Accounts
        • App Store Connect API
        • Google Play Connect API
  • Your Projects
    • Project Settings
      • Overview
      • Automatically clean up build binaries
      • Notification Integrations
        • Slack integration
        • Webhook integration
        • Microsoft Teams integration
        • Discord integration
        • WebEx integration
      • User & Permissions
    • App Overview & App Settings
      • Notifications
      • Security
      • Last uploaded build
      • Add another app to your project
      • Android App Bundle (AAB)
    • Builds and App versions
      • Build history / app version history
        • iOS Resigning
        • Android Resigning
      • Release Notes
      • Exchange already uploaded app version
      • Distribute and install a pre-release version of your app
        • App download page
    • Feedback
    • App Distribution
      • Testers & Distribution Groups
      • Distribute your app
        • Single Release
        • Beta Release (one link two apps)
        • Store
          • App Store Distribution
          • Play Store Distribution
      • Release History
      • Install an app distributed from Updraft
  • Integrations
    • Jenkins Plugin Updraft
    • Fastlane
    • Gradle
    • Teamcity with Gradle (Android)
    • Teamcity
    • GitLab CI/CD
      • GitLab iOS with Fastlane
      • GitLab app distribution for iOS builds
      • GitLab app distribution for Android builds
    • Bitrise
  • API
    • Upload API
    • Upload Apps with CURL
    • Rest API
      • Distribution group and Permission group API
  • Updraft SDK
    • Autoupdate
    • Integrating Updraft Android SDK
    • Integrating Updraft iOS SDK
    • Integrating Updraft Flutter SDK
  • Android
    • Unknown sources in Android
    • .apk installation on Samsung Browser
    • Android FAQ
    • 🪅Android Icon Troubleshooting
    • Google Play Store upload issues
  • iOS
    • Untrusted Enterprise Developer
    • Code Signing Explained (Certificates, Identifiers, Profiles – what?)
    • Registering a UDID for Ad Hoc Distribution
    • What does "App could not be installed at this time" mean?
    • iPadOS on Safari
    • iOS FAQ
  • Data Security
    • Data hosting in Switzerland
      • Swiss data privacy law
    • End to end data encryption
    • General Data Protection Regulation (GDPR)
    • Single Sign On (SSO)
    • Custom Storage
      • Google Cloud Storage
      • Custom S3 bucket
    • ISO 27001
  • What's New/ Changelog
  • Roadmap
  • FAQ
  • Contact us
Powered by GitBook
On this page
  1. Dashboard
  2. Profile & User Account
  3. Security (Single Sign-On)

Custom SSO (SAML)

The Updraft platform supports integration with any SAML 2.0-compliant Identity Provider (IdP). This feature is available with the Enterprise Plan and enables you to configure a custom SAML provider for seamless single sign-on (SSO) functionality.

Since different Identity Providers have varying setup processes, the following instructions provide the general configuration requirements and fields you will need to complete.


Steps to Configure SAML with Updraft

  1. Sign in to Your Identity Provider (IdP) Log in to the administrative interface of your Identity Provider. Refer to the IdP’s documentation for specifics about where to configure Service Provider (SP) details.

  2. Service Provider (SP) Information Use the following information when adding Updraft as the Service Provider:

    • SP Entity ID: Enter the following value: getupdraft

    • Assertion Consumer Service (ACS) URL: Copy and paste the following URL: https://getupdraft.com/saml2_auth/acs/

  3. NameID and Format Configure the NameID settings as follows:

    • SAML Subject NameID: Set this to username.

    • SAML Subject NameID Format: Select: urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified

  4. Signature Algorithm Set the Signature Algorithm to: RSA-SHA256

  5. User Attribute Mapping Map the following user attributes to ensure proper synchronization between the IdP and Updraft:

User Attribute

Value

email

email

username

email

first_name

firstname

last_name

lastname


Testing the Integration

Once the configuration is complete, test the SSO functionality:

  • Attempt to log in to Updraft using the configured SSO provider.

  • Ensure user attributes (email, username, first_name, and last_name) are correctly populated in Updraft.


Troubleshooting Tips

  • Double-check the SP Entity ID and ACS URL for typos or errors.

  • Confirm that your IdP supports RSA-SHA256 as a signature algorithm.

  • Ensure the attribute mapping aligns with the user directory in your IdP.


Frequently Asked Questions

What if my IdP doesn't support RSA-SHA256?

Most modern IdPs support RSA-SHA256. If yours does not, consult the IdP's documentation or contact their support for alternative algorithms.

Can I configure additional attributes?

Yes, additional attributes can be configured in your IdP. Updraft currently requires the four specified attributes (email, username, first_name, last_name) to function properly.

Where can I get support for custom SAML integration?

For support, reach out to the Updraft technical team via your Enterprise support portal.


This documentation provides the general setup for integrating Updraft with your custom SAML Identity Provider. If additional assistance is required, refer to your IdP’s documentation or contact Updraft support (support@getupdraft.com).

PreviousSingle Sign-On with Ping IdentityNextDeveloper Accounts

Last updated 5 months ago