Configuring SAML SSO for AssetSonar

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and AssetSonar.

Prerequisite

  1. Login to ADSelfService Plus as an administrator.
  2. Navigate to Configuration > Self-Service > Password Sync/Single Sign On > Add Application, and select AssetSonar from the applications displayed.

    3. Note: You can also find AssetSonar application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.

  3. In the AssetSonar configuration page, click IdP details in the top-right corner of the screen.
    4. Screenshot
  4. In the pop-up that appears, copy the Login URL and download the SSO certificate by clicking on Download X.509 Certificate.
    5. Screenshot

AssetSonar (Service Provider) configuration steps

  1. Login to AssetSonar with an administrator’s credentials.
  2. Navigate to Settings > Add-Ons and select SAML integration.
    3. Screenshot
  3. Click Enabled to configure SAML-based SSO.
  4. Paste the Login URL copied in Step 4 of Prerequisite in the Identity Provider URL field.
  5. Enter the content of the X.509-Certificate downloaded in Step 4 of Prerequisite in the Identity Provider Certificate field.
  6. Retain the First Name, Last Name, and Email fields values as first_name, last_name, and email respectively.
  7. Click Update.

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ AssetSonar configuration page.
  2. Enter the Application Name and Description.
  3. Enter the Domain name of your AssetSonar account. For example, if you use johndoe@thinktodaytech.com to log in to AssetSonar, then thinktodaytech.com is the domain name.
  4. In the Sub Domain field, enter the subdomain name of your AssetSonar account. For example, if your AssetSonar URL is https://xyzcorp.assetsonar.com, then xyzcorp is the sub domain.
  5. In the Assign Policies field, select the policies for which SSO need to be enabled.

    6. Note: ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration > Self-Service > Policy Configuration > Add New Policy.

  6. Select the SAML tab and check Enable Single Sign-On.
  7. Enter the Assertion Consumer Service URL provided by your application service provider in the Assertion Consumer Service URL field. If required, click the + button next to the text field to add multiple Assertion Consumer URLs. These values can be found in the application's SSO configuration page or metadata. Please reach out to your application's support team if you are having trouble locating the Assertion Consumer Service URL in your application's user interface or metadata.
  8. In the Name ID Format field, choose the format for the user login attribute value specific to the application.

    9. Note: Use Unspecified as the default option if you are unsure about the format of the login attribute value used by the application.

  9. Click Add Application.
    10. Screenshot

Your users should now be able to sign in to AssetSonar through ADSelfService Plus.

Note: For AssetSonar, single sign-on is supported for SP and IDP initiated flow.

Go to Top

Copyright © 2025, ZOHO Corp. All Rights Reserved.