Skip to main content

Please log into UltraDNS for full Help Center and Community access

How to Prepare for SAML Setup in UltraDNS

Updated

This article explains which SAML setup resources to review before configuring SAML for an UltraDNS account. Review these resources in order so you understand the setup process, know which values are required, and can resolve common configuration issues before enabling SSO for users.

When to Use This Article

  • You are preparing to configure SAML for an UltraDNS account.
  • You need the correct setup sequence before enabling SSO.
  • You need to confirm the required Service Provider values and SAML attributes.
  • You need troubleshooting resources for missing attributes, empty assertions, or login issues.

Review the SAML Setup Process

Start by reading the main SAML setup article. This article explains the overall SAML setup process and should be reviewed before making changes in the UltraDNS portal. Review it once to understand the process, then review it again while you are ready to complete the configuration.

SAML setup process

Use the SAML Quick Start Guide

After reviewing the main SAML setup process, use the SAML Quick Start Guide to complete the configuration. The UltraDNS portal also displays on screen messages at the top of the setup page and includes question mark icons next to setup sections for additional guidance.

Download the SAML Quick Start Guide PDF

SAML Quick Start article

You must be logged in to your UltraDNS account before you can view the SAML Quick Start article.

Required SAML Values

Use the following Service Provider values when configuring SAML for UltraDNS.

  • ACS URL: https://amsso.ultradns.com/neusso/Consumer/metaAlias/NSSRealm/nss-sp
  • Entity ID: nss-sp-hosted

UltraDNS also requires the following three SAML attributes. These attribute names must be sent in lowercase.

  • givenname
  • sn
  • mail

Troubleshooting SAML Setup

Most SAML failures are caused by missing attributes or an empty SAML assertion. Confirm that the required attributes are being sent exactly as listed above and that the attribute names are lowercase.

Turn off SAML assertion encryption if it is enabled. If the SAML assertion is empty, encryption is enabled and must be disabled for the UltraDNS SAML configuration.

If SAML login still fails after confirming the required values, attributes, and encryption setting, use the SAML troubleshooting guide.

SAML troubleshooting guide

Set User Permissions After SSO Login

After a user logs in through the SSO link, the user may not have UltraDNS permissions assigned. An administrative user must log in and update the user permissions before the user can access the required areas of the account.

Pending authorization and contact information

Related Articles

Related to

Was this article helpful?
0 out of 0 found this helpful
Return to top

Related articles