Skip to main content

HelloID

Winkwaves SAML application setup
Introduction

This article demonstrates how to set up Winkwaves for single sign-on. The configuration takes place in HelloID and requires you to send information to Winkwaves.

Use these instructions to set up SSO for any (test or production) Winkwaves environment. We recommend setting up any test/preview environments prior to production environments.

Requirements

  • HelloID environment

  • Winkwaves environment

Create or import a certificate

If there is no certificate yet, you must create or import one. For this tutorial, we will create a self-signed certificate. Name it WinkwavesSelfSigned.

Application setup
Add the Winkwaves application

  1. Add a new application.

  2. Find the template for Winkwaves Social Intranet (SAML).

  3. Select its Add button.

General tab

Change the following settings:

  • Default Login URL

    Replace with your Winkwaves environment URL. For example: https://{WinkWaves_customer_portal}/.

Select the Next button.

Single Sign-On tab

Change the following settings:

  1. Issuer

    Enter your HelloID domain in the format https://{customer}.helloid.com.

  2. Endpoint URLEnter your Winkwaves environment's AssertionConsumerService URL. This can be obtained from Winkwaves or found in the Winkwaves metadata file. This URL is case-sensitive. For example: https://{Winkwaves_customer_portal}/user_sessions/saml_consume.

  3. Validate and use ACS request URLTurn on.

  4. ACS validation listCopy your Endpoint URL value into this field.

  5. SP-initiated URLEnter your Winkwaves environment's login page URL. This can be obtained from Winkwaves and is (in most cases) your Winkwaves environment URL followed by /welcome. For example: https://{Winkwaves_customer_portal}/welcome.

  6. X509 CertificateSelect the WinkwavesSelfSigned certificate that you previously imported or created.

  7. Extra audience(s)Replace with your Winkwaves environment URL. For example: https://{WinkWaves_customer_portal}/.

Select the Next button.

Self Service tab

Optionally, generate a Self Service product, which makes the application requestable. Select a group that will have access to the product.

Select the Next button.

Finish tab

Select the Save button to add the Winkwaves application to HelloID.

Additional configuration
Mapping

By default, the user's HelloID {{user.UserName}} attribute is sent as the SAML NameID . If you wish to use another attribute, see Mapping - Overview.

Supplier-side configuration

The HelloID side of the configuration is now finished.

To connect, Winkwaves needs to add the connection on their side. Contact Winkwaves to request this.

Send them the following information:

  • Metadata URL

Metadata URL

  1. Go to the Applications overview.

  2. Select the Edit link for the newly-added Winkwaves application.

  3. Right-click the Download metadata button

  4. Select Copy link address. It will resemble: https://enyoi.helloid.com/metadata/download?ApplicationGUID=e6e741f5-a469-4849-93f7-fe2e259a339f.

Finish up

The Winkwaves application has been added to HelloID, and a trust has been configured between Winkwaves and HelloID. You are now free to test the application and assign it to users within your organization. See Applications - Overview and its related articles for more information.

In this section: