Wikey Docs
  • Using the mobile app
    • Download the app
    • App initial configuration
      • Step 1: Account Configuration
      • Step 2: Sign in
      • Step 3: Choose account name
      • Step 4: Optional - Add helpers
    • Adding/Editing helpers
      • Setting helpers threshold
    • Phone specific configuration
  • Server side configuration
    • SSO Single Sign-On Integration
      • Target applications configuration
  • WiKey as a SAML IdP in Google Workspace
Powered by GitBook
On this page
  • About
  • Overview
  • WiKey Identity Provider Dashboard Configuration
  • Login to Dashboard
  • Add Certificate
  • Add Application
  • Configure target application
  1. Server side configuration

SSO Single Sign-On Integration

PreviousServer side configurationNextTarget applications configuration

Last updated 5 months ago

About

Registering an application to login with WiKey has great benefits. The users don't need to hide or remember any password and don't need to provide any personal information. This creates a substantial security advantage.

Note: This is a one-time setup that should be done by your IT admin

Overview

To setup an application to work with WiKey there are two steps that need to be done:

1) In the WiKey Identity Provider Portal: Set up a SAML certificate and associate it with a certain target app (the Target app can be Microsoft 365).

2) Configure the target app so logins will be done via the WiKey, Each target app has a different configuration

WiKey Identity Provider Dashboard Configuration

Login to Dashboard

Log in to the WiKey Identity Provider dashboard: https://auth.omnistar.io/login/XYZ, where XYZ is the name given to you by the WiKey organization registration system

Note: 1) For the initial login you should use the email you registered your organization with and the password that was given to you during the account registration

2) For all subsequent registrations, use the WiKey authenticator to login to the portal. You can download the WiKey Authenticator via this link: https://open.wikey.io

Add Certificate

Although not mandatory, we advise adding a certificate per target application. This means that if, for example, you use Microsoft 365 for your email and you also use a CRM, you would need to repeat these steps two times.

On the Top Menu Click: [Identity -> certs]

In the identity -> Certs page, Click on Add

Then confirgure the newly created certificate: (1) Fill in the fields, (2) Download the certificate to your computer, (3) Save & Exit

Note:

  1. Remember the Display name of the certificate you created.

  2. A new certificate is advised per application

Add Application

Add an application that will work with the above-created certificate.

On the Top Menu Click: [Identity -> Applications]

Then, on the page:

Click on the copy SAML metadata URL and paste the link into a new tab in the browser.

In the new tab, save the metadata to a file on your computer

Click to copy the sign-in page URL

Scroll up and click on the “save & exit” Button

Configure target application

Configure the target application with the certificate you downloaded earlier and with the sign-in URL (from step 5)