Configuring SAML SSO for EduBrite

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and EduBrite

Prerequisite

  1. Log in to ADSelfService Plus as an administrator.
  2. Navigate to  Configuration → Self-Service → Password Sync/Single Sign On → Add Application, and select Edubrite from the applications displayed.
    Note: You can also find Edubrite application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.
  3. Click IdP details in the top-right corner of the screen.
  4. In the pop-up screen that appears, note down the values of Login URL value. We will need these values in a later step.
  5. Click Download  certificate and save the file (PEM file). Open the certificate file in a text editor and copy its content. We will need this in a later step.
    6. IDP Details

EduBrite (Service Provider) configuration steps

  1. Now, log in to your EduBrite administrator account.
  2. Navigate to Site Admin → CMS.

  3. Click Create New → Data Source.

    Screenshot
  4. In the Title field, enter SAML_IDP_CERT.cer.
  5. Now paste the certificate file content that you had copied in Step 5 of Prerequisite in the text field below the Title field.
  6. Click Save Draft, and then Publish.
  7. Navigate to Site Admin > Site Details > Customization.

  8. In the text field, enter a new entry as given below:

    SAML_IDP_URL=Login URL value from Step 4 of Prerequisite. You have to add a “\” symbol after “https” and the domain name.

    For example, if the Login URL value is: https://selfservice.com:9251/iamapps/ssologin

    Then enter: SAML_IDP_URL=https\://selfservice.com\:9251/iamapps/ssologin

    Screenshot
  9. Click Save.

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ EduBrite configuration page.
  2. Enter the Application Name and Description.
  3. In the Assign Policies field, select the policies for which SSO need to be enabled.
    Note:ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy.
  4. Select Enable Single Sign-On.
  5. Enter the Domain Name of your EduBrite account. For example, if you use johndoe@thinktodaytech.com to log in to EduBrite, then thinktodaytech.com is the domain name.
  6. In the SP Identifier field, enter your SP Identifier found in Edubrite login URL. For example, if your login URL is thinktoday.edubrite.com, then the SP Identifier is thinktoday.
  7. Enter the Assertion Consumer Service URL provided by your application service provider in the Assertion Consumer Service URL field. If required, click the + button next to the text field to add multiple Assertion Consumer URLs. These values can be found in the application's SSO configuration page or metadata. Please reach out to your application's support team if you are having trouble locating the Assertion Consumer Service URL in your application's user interface or metadata.
  8. In the Name ID Format field, choose the format for the user login attribute value specific to the application.

    9. Note: Use Unspecified as the default option if you are unsure about the format of the login attribute value used by the application.

  9. Click Add Application
    10. Your users should now be able to sign in to EduBrite through ADSelfService Plus.
    Note: For EduBrite, both IdP-initiated and SP-initiated flows are supported.
Go to Top

Copyright © 2025, ZOHO Corp. All Rights Reserved.