SAML/SSO Configuration

SAML Authentication: {% if saml_enabled %}Enabled{% else %}Disabled{% endif %} {% if saml_enabled %}Users can sign in with SSO via your identity provider{% else %}Only local username/password authentication is available{% endif %}

Service Provider Metadata

Use this URL to configure FireLens as a Service Provider in your Identity Provider (Okta, Azure AD, etc.)

SP Metadata URL

View XML

General Settings

Enable SAML Authentication

When enabled, users will see a "Sign in with SSO" option on the login page.

Identity Provider (IdP) Configuration

IdP Entity ID * Also called Issuer or Entity ID in your IdP

IdP SSO URL * Single Sign-On URL from your IdP

IdP SLO URL Single Logout URL (optional, for full logout support)

Username Attribute SAML attribute to use as username (email, uid, sAMAccountName)

IdP X.509 Certificate * The public certificate from your IdP for signature validation

Service Provider (FireLens) Configuration

SP Entity ID * Unique identifier for FireLens (usually your base URL)

SP ACS URL * Assertion Consumer Service URL (where IdP sends responses)

SP SLO URL Single Logout URL (optional)

Security Options

Require Signed Assertions

Recommended. Ensures assertions are signed by IdP.

Require Signed Response

Require the entire SAML response to be signed.