Articles on: Settings & Configuration

How to connect SAML SSO

Connect SuperPath to SAML SSO



Setting up SAML Single Sign-On (SSO) allows your team to securely access SuperPath using your organisation’s identity provider. This simplifies login, improves security, and gives you greater control over user access.


Prerequisites

Before you begin, make sure:


  • Custom Authentication has been enabled for your SuperPath account
  • You’ve received confirmation from your SuperPath account manager
  • You have access to your SAML provider (e.g. sso.tools)


Step 1: Configure SSO in SuperPath


  1. Log in to SuperPath as the account owner
  2. Navigate to Settings → Security
  3. Click “Configure SSO (SAML)”



You’ll need to enter the following values from your SAML provider:

SuperPath Field

Value (from sso.tools)

SSO Email Domain

Your organisation’s domain (e.g. acmecorp.com). You must be logged in with this domain to configure SSO.

Entity ID

A unique identifier for your Identity Provider (IdP). It tells SuperPath who is authenticating the user and must exactly match the IdP’s configured identifier. This is used during the SAML handshake to establish trust between SuperPath and your SSO provider.

SSO URL

The login endpoint for your Identity Provider. This is where SuperPath redirects users to authenticate via SSO. Once authentication is successful, the user is redirected back to SuperPath with a valid SAML response.

Certificate

Copy the full Signing Certificate including:-----BEGIN CERTIFICATE----------END CERTIFICATE-----

Service Provider Entity ID

https://app.superpath.io (US) or https://app-au.superpath.io (AU)


  1. Click Save



Step 2: Test the SSO Connection


⚠️ Important: SuperPath only supports one authentication method per user. Testing SSO requires careful setup.


  1. Go to Users
  2. Click Add User
  3. Enter a user with your SSO email domain (e.g. user@acmecorp.com)
  4. Set Login Type to SAML SSO
  5. Create User
  6. Ask the user to log in


Option 2: Get help from SuperPath

If you’re unsure, reach out to the SuperPath support team and we can help test the connection safely.


Step 3: Validate the login flow


When testing SSO:


  1. Go to the SuperPath login page
  2. Enter an email using your SSO domain
  3. You should be:
    • Redirected to your authentication provider
    • Prompted to log in via your identity provider
  1. After successful login, you’ll be redirected back to SuperPath


✅ If this works, your SSO setup is complete.


Additional Notes

  • Users with emails matching your SSO domain must use SSO (password login is disabled)
  • Users from other domains can still log in with email/password
  • You can enforce authentication rules via: Settings → Security → Enforce authentication type
  • Make sure users exist in both:
    • Your SAML provider
    • SuperPath (if required by your setup)



Troubleshooting tips

  • Double-check your certificate formatting (including BEGIN/END lines)
  • Ensure your Entity ID and SSO URL match exactly
  • Confirm the user exists in your identity provider
  • Verify the email domain matches your configured SSO domain


Updated on: 10/04/2026

Was this article helpful?

Share your feedback

Cancel

Thank you!