Single Sign-On is only available in our Plus and Enterprise Network plans.
MURAL supports SAML SSO Integrations with most Identity Providers (IDP).
Although some identity providers may show a MURAL app in their gallery, we do not currently have any applications released. The SSO configuration will require a custom set up.
Import MURAL's metadata file in your IDP
If your IDP supports uploading a metadata file, you can import the configuration by using MURAL's productive metadata file.
If you are in an Enterprise Network plan, you can download the metadata file from your Company Dashboard or if not from the following link.
Configure SAML parameters manually
MURAL supports either HTTP-POST or HTTP-REDIRECT bindings. Be sure to configure the desired one in your IDP.
SAML Subject / Name ID
The Name ID parameter should be email address and the format should be set as
<Attribute Name="First name">
<Attribute Name="Last name">
Avatar or Profile Picture (Optional)
External ID (Optional)
<Attribute Name="External ID">
Signed Authentication request configuration
MURAL requires to have the SAML response signed with a public certificate provided by the IDP administrator.
Also, it gives the possibility to sign the authentication request. In order to configure it, you should upload MURAL's public certificate to your IDP.
Now, your Identity Provider (IDP) is ready to go. In order to finish the complete integration, you will need to download the IDP Metadata file to configure MURAL.
If you have an Enterprise Network plan, you will be able to import the metadata file through the Self-Serve Single Sign-On feature in the company dashboard. If you configure the SAML Attributes with the default values described above you should configure the Claim mappings in MURAL with the following values:
- Email Address -
- First Name -
- Last Name -
If you typed a custom name for the SAML Attributes, you should type the same name you entered in your IDP.
For Plus plans, please send an email to email@example.com attaching the metadata file.