Configuring an Identity Provider

Overview

ShellHub supports SAML authentication through any compatible Identity Provider (IdP). You can enable SAML authentication at any time using either your IdP's metadata URL or by manually configuring the required attributes. The SAML method can be disabled whenever an alternative authentication method is available.

For information about user authentication with your IdP, see Authenticating Users.

Configuration Methods

There are two ways to configure your IdP: using a metadata URL or manual attribute configuration. You can also enable signed authentication requests for enhanced security and customize attribute mappings as needed.

Once enabled, configure your IdP to allow callbacks to ShellHub using your instance's authentication endpoint. The URL follows this format: https://your-instance.managed.shellhub.io/api/user/saml/auth

warning

Use the exact URL format to avoid routing errors.

Overview​

Configuration Methods​

Overview

Configuration Methods