1. Home
  2. Applications
  3. BGL 360
  4. BGL SAML Configuration

BGL SAML Configuration

BGL requirements for SSO

Before you configure the BGL web application for SSO, you need the following:

  • All User Accounts Including the BGL Administrator Account have a Practice Protect Account
  • All Users usernames in Practice Protect match their usernames in BGL
  • Access to the Practice Protect Admin portal
  • Scheduled deployment with the Customer and BGL Support

Configuring BGL for SSO

1.Login to Practice Protect Admin Portal. Click Roles then click Add Role.

2. On the Name field, enter the Name of the role i.e. BGL SAML Users.

3. Click on Members, then click Add. Search the user/s that needs access to BGL 360 and click Add. Click Save. This role (BGL SAML Users) will be used in the succeeding steps.

4. In Admin Portal, click Apps, then click Add Web Apps.

The Add Web Apps screen appears.

5. Click “Custom”

6. Chose “SAML” application click Add.

7. In the Add Web App screen, click Yes to add the application.

Admin Portal adds the application.

8. Click Close to exit the Application Catalog.

The application that you just added opens to the Settings page. Set the following:

Name:  BGL SAML Configuration

Untick – Show in App portal

Then Click Save

9. Click Trust page to begin configuring the application.

10. Click “Download Metadata File”

11. Under Service Provider Configuration add the following:

SP Entity ID: urn:amazon:cognito:sp:ap-southeast-2_zaFx0LO1i

ACS URL: https://bglcorp-production-external.auth.ap-southeast-2.amazoncognito.com/saml2/idpresponse

NameID Format: emailAddress

12. Now click “Save”

13. Now click “Saml Response” on the left.

14. Click “Add” and set Attribute Name as “email” and Attribute Value as “LoginUser.Username”

15. Click Save                                                       

 

16. Click on Permissions, then click Add. Search for the BGL SAML Users Role created in step no. 3. Click Add, then click Save.

17. On the Admin Portal, go to the Apps, click Web Apps then click Add Web Apps.

The Add Web Apps screen appears.

18. Click “Custom”

19. Chose “Bookmark” application click Add.

20. Click Close to exit the Application Catalog.

The application that you just added opens to the Settings page. Set the following:

URL: https://sso.bgl360.com.au/login?provider=clientdomain.com

Note: ClientDomain.com needs to be replaced with your login domain.

Then Click Save.

21. Then on Description update the following:

Application Name: BGL 360

Logo:  Select BGL Logo

22. Click Save

23. Click on Permissions, then click Add. Search for the BGL SAML Users Role created in step no. 2. Click Add, then click Save.

24.  You will now need to compose an email to BGL Support and attached the Practice Protect Metadata file download in step 10.  You will also need to advise BGL Support of the Client Domain from step 20.

25. Await BGL Supports Reply and then test SSO login.

Updated on August 7, 2019