Skip to main content

HelloID

Smile SAML application setup
Introduction

This article demonstrates how to set up HelloID and Smile for single sign-on using the SAML protocol. The configuration takes place in HelloID and requires you to send information to Smile.

Requirements

  • HelloID environment

  • Smile environment

Create or import a certificate

If there is no certificate yet, you must create or import one. For this tutorial, we will create a self-signed certificate. Name it SmileSelfSigned.

Application setup
Add the Smile application
  1. Add a new application.

  2. Find the template for Smile (SAML).

  3. Select its Add button.

mceclip0.png
General tab

Change the following settings:

  • Default Login URL

    The default login URL of your Smile environment

mceclip1.png

Select the Next button.

Single Sign-On tab

Change the following settings:

  • Issuer

    Enter your HelloID domain in the format https://{customer}.helloid.com.

  • Endpoint/ACS URL

    Enter your Smile endpoint URL. It can be found in the Smile metadata (AssertionConsumerService with binding POST)

  • X509 Certificate

    Select the SmileSelfSigned certificate that you previously imported or created.

  • Extra Audience(s)

    entityid from the Smile metadata

mceclip2.png

Select the Next button.

Self Service tab

Optionally, generate a Self Service product, which makes the application requestable. Select a group which will have access to the product.

Select the Next button.

Finish tab

Select the Save button to add the application to HelloID.

Supplier-side configuration

The HelloID side of the configuration is now finished.

To connect, Smile needs to add the connection on their side. Contact Smile to request this.

Send them the following information:

  • Metadata URL

Metadata URL
  1. Go to the Applications overview.

  2. Select the Edit link for the newly-added Smile application.

  3. Right-click the Download metadata button

  4. Select Copy link address. It will resemble: https://enyoi.helloid.com/metadata/download?ApplicationGUID=e6e741f5-a469-4849-93f7-fe2e259a339f.

mceclip0.png
Finish up

After Smile adds the connection, the application is ready for use. Go to the HelloID User Dashboard and launch the application. You should be authenticated into the Smile application without being prompted for credentials.

You are now free to test the application and assign it to users within your organization. See Applications - Overview and its related articles for more information.