Kendis offers the option to automatically assign the new users the groups that they have in their identity provider, e.g., AzureAD, OKTA, or any other SAML-based IDP.

Set up SAML Group ID in Kendis?

Follow these steps to configure the settings for the groups

  • Create one or more Kendis groups in Kendis (Super admins can create the group by going to settings)

  • On the group creation screen, type the name of the group

  • In the "External Group" reference field, provide the relevant group name that will come as SAML response.

  • In the case of OKTA, it can be an OKTA group name.

  • SPECIAL CASE: In the case of AzureAD, it must be a group "Object ID" reference.

Example of AzureAD Group Object ID

How it will work?

Once the SAML configuration is working properly and the user logs in at Kendis through SAML,

  • Kendis will check the groups' references sent in the SAML response.

  • Kendis will match the group name or ID in the SAML response with the "External Group Object" value in Kendis groups.

  • If the value matches, Kendis will automatically add the user to this group.

  • If the group is assigned to the "Board Collections" with a particular role then the user will get those roles automatically.

Did this answer your question?