Cybozu Cloud Services SAML Single Sign-On (SSO) integration

This topic contains procedures to configure AppName for Single Sign-On (SSO) in CyberArk Identity using SAML.

With CyberArk Identity, you can choose single-sign-on (SSO) access to the Cybozu Cloud Services web application with SP-initiated SAML SSO (for SSO access through the Cybozu Cloud Services web application). SP-initiated SAML SSO gives you and your users maximum flexibility.

AppName SSO supported features

This application template supports the following features:

  • SP-initiated SSO

Prerequisites for AppName SSO

To connect cybozu.com with the IdP through SAML authentication, you must configure both the IdP and Cybozu Cloud Services application.

Before you configure the Cybozu Cloud Services web interface for SSO, you need the following:

  • Cybozu Cloud Service admin user

  • Users created for SSO

Configure the AppName app template in the Identity Administration portal

The following procedure describes the steps in the Identity Administration portal needed to configure the AppName app template for SSO.

Step 1: Add the AppName web app template.

  1. In the Identity Administration portal, select Apps & Widgets > Web Apps, then click Add Web Apps.

    Add a web app screen

  2. On the Search page, enter the application name in the Search field and click the search button.

  3. Next to the application name, click Add.

  4. On the Add Web App page, click Yes to confirm.

  5. Click Close to exit the Application Catalog.

    The application opens to the Settings page.

Step 2: Configure the Settings page.

Set an app name, description, category, and logo if you want to change them.

Step 3: Configure the Trust page.

  1. In the Identity Provider Configuration section, select Metadata, then click Download Metadata File to download the IdP metadata.

    This file is used later when you configure the SAML integration in AppName.

Step 4: Review and save.

Review your settings to confirm your configuration. For example, you might want to verify that you selected the appropriate users, groups, or roles on the Permissions page. Click Save when you are satisfied.

Configure AppName for SAML single sign-on

The following procedure describes the steps in the AppName Admin Portal needed to configure the AppName app template for SSO.

  1. Sign up with the email address and password used while creating the sub-domain. For example, https://(subdomain_name).cybozu.com,

  2. Click Kintone Cloud service for IDP configuration settings.

  3. Go to Setting > Users & System Administration.

  4. Go to System Administrator > Login.

  1. Select Enable SAML authentication.

  2. Enter Login URL and Logout URL. Refer to Configure the Trust page.

  3. Upload the certificate provided by the Identity Provider. Refer to Configure the Trust page.

  1. Click Save

Additional information

For SP-initiated SSO, use the following URL as sub-domain link, For example:

https://cyberark.cybozu.com

For Configuration Settings refer to:

https://cyberark.cybozu.com/k/

For additional resources, refer to Cybozu Cloud Service’s integration support documents at:

 https://jp.cybozu.help/general/en/admin/list_saml/saml_settings.html