Skip to main content

HelloID

ItsLearning SAML application setup
Introduction

This article demonstrates how to set up ItsLearning for single sign-on. The configuration takes place in HelloID and requires you to send information to ItsLearning.

Use these instructions for both test and production environments. We recommend setting up the test/preview environments first.

Requirements

  • HelloID environment

  • ItsLearning environment

Create or import a signing certificate

If there is no signing certificate yet, you must create or import one. For this tutorial, we will create a self-signed certificate. Name it ItsLearningSelfSigned.

Application setup
Add the ItsLearning application

  1. Add a new application.

  2. Find the template for ItsLearning (SAML).

  3. Select its Add button.

ItsLearning_search.png
General tab

Change the following settings:

  • Default Login URL

    Replace {customer} with your ItsLearning username.

ItsLearning_general_tab.png

Select the Next button.

Single Sign-On tab

Change the following settings:

  1. Issuer

    Enter your HelloID domain in the format https://{customer}.helloid.com/.

  2. Endpoint URLEnter your ItsLearning environment's AssertionConsumerService URL. This can be obtained from ItsLearning or found in the ItsLearning metadata file. This URL is case sensitive. For example: https://itsltest.com/eLogin/AssertionConsumerService.aspx.

  3. Validate and use ACS request URLTurn on.

  4. ACS validation listCopy your Endpoint URL value into this field.

  5. X509 CertificateSelect the ItsLearningSelfSigned certificate that you previously imported or created.

ItsLearning_sso_tab.png

Select the Next button.

Self Service tab

Optionally, generate a Self Service product, which makes the application requestable. Select a group which will have access to the product.

ItsLearning_selfservice_tab.png

Select the Next button.

Finish tab

Select the Save button to add the ItsLearning application to HelloID.

Additional configuration
Mapping

By default, the user's HelloID {{user.attributes.userPrincipalName}} attribute is sent as the SAML userPrincipalName (urn:oid:1.3.6.1.4.1.5923.1.1.1.6) . If you wish to use another attribute, see Mapping - Overview.

Supplier-side configuration

The HelloID side of the configuration is now finished.

To connect, ItsLearning needs to add the connection on their side. Contact ItsLearning to request this.

Send them the following information:

  • Metadata URL

Metadata URL

  1. Go to the Applications overview.

  2. Select the Edit link for the newly-added ItsLearning application.

  3. Right-click the Download metadata button

  4. Select Copy link address. It will resemble: https://enyoi.helloid.com/metadata/download?ApplicationGUID=e6e741f5-a469-4849-93f7-fe2e259a339f.

    mceclip0__1_.png
Finish up

The ItsLearning application has been added to HelloID, and a trust has been configured between ItsLearning and HelloID. You are now free to test the application and assign it to users within your organization. See Applications - Overview and its related articles for more information.

In this section: