Security Journey

Please follow the steps below to configure SAML for Security Journey.

<a href="https://admin.google.com/" rel="nofollow noopener noreferrer" target="_blank">Sign in</a> to your <a href="https://support.google.com/a/answer/182076" rel="nofollow noopener noreferrer" target="_blank">Google Admin console</a>.

Sign in using an account with <a href="https://support.google.com/a/answer/2405986#super_admin" rel="nofollow noopener noreferrer" target="_blank">super administrator privileges</a>.

In the Admin console, go to Menu &gt; Apps &gt; Web and mobile apps.

Click Add App &gt; Add custom SAML app. Enter the app name (Security Journey) and, optionally, upload an icon for your app. The app icon appears on the Web and mobile apps list, on the app settings page, and in the app launcher. If you don't upload an icon, an icon is created using the first two letters of the app name.

On the Google Identity Provider details page, get the setup information needed by the service provider using one of these options:

1. Download the IDP metadata.
2. Copy the SSO URL

In the Service Provider Details window, enter:

1. ACS URL— <a href="https://auth.hackedu.com/saml2/idpresponse" rel="nofollow noopener noreferrer" target="_blank">https://auth.hackedu.com/saml2/idpresponse</a>
2. Entity ID— urn:amazon:cognito:sp:us-east-1_CHi5tsM8X
3. Start URL—(Optional) <a href="https://my.securityjourney.com/?domain=custommerdomain.com" rel="nofollow noopener noreferrer" target="_blank">https://my.securityjourney.com/?domain=</a>yourdomain.com [*You will need to add your company domain to the end of the Start URL]

Set Name ID format and Name ID value for your custom SAML app. The default Name ID is the primary email.

If needed, click Add mapping to map user attributes based on the service provider’s requirements. Security Journey only requires Name ID but additional attributes can be added to enrich your learner's profile, Platform reports or to create targeted training assignments. To learn more, check out <a href="https://help.securityjourney.com/en/articles/7031103-learner-attributes" rel="nofollow noopener noreferrer" target="_blank">Learner Attributes</a>

(Optional) To enter group names that are relevant for this app:

1. For Group membership (optional), click Search for a group, enter one or more letters of the group name, and select the group name.
2. Add additional groups as needed (maximum of 75 groups).
3. For App attribute, enter the service provider’s corresponding groups attribute name.

1. <a href="https://admin.google.com/" rel="nofollow noopener noreferrer" target="_blank">Sign in</a> to your <a href="https://support.google.com/a/answer/182076" rel="nofollow noopener noreferrer" target="_blank">Google Admin console</a>.
 Sign in using an account with <a href="https://support.google.com/a/answer/2405986#super_admin" rel="nofollow noopener noreferrer" target="_blank">super administrator privileges</a>. 
2. In the Admin console, go to Menu &gt; Apps &gt; Web and mobile apps.
3. Click Add App &gt; Add custom SAML app. Enter the app name (Security Journey) and, optionally, upload an icon for your app. The app icon appears on the Web and mobile apps list, on the app settings page, and in the app launcher. If you don't upload an icon, an icon is created using the first two letters of the app name.
4. Click Continue.
5. On the Google Identity Provider details page, get the setup information needed by the service provider using one of these options:
 1. Download the IDP metadata.
 2. Copy the SSO URL
6. Click Continue.
7. In the Service Provider Details window, enter:
 1. ACS URL— <a href="https://auth.hackedu.com/saml2/idpresponse" rel="nofollow noopener noreferrer" target="_blank">https://auth.hackedu.com/saml2/idpresponse</a>
 2. Entity ID— urn:amazon:cognito:sp:us-east-1_CHi5tsM8X
 3. Start URL—(Optional) <a href="https://my.securityjourney.com/?domain=custommerdomain.com" rel="nofollow noopener noreferrer" target="_blank">https://my.securityjourney.com/?domain=</a>yourdomain.com [*You will need to add your company domain to the end of the Start URL]
8. Set Name ID format and Name ID value for your custom SAML app. The default Name ID is the primary email.
9. Click Continue.
10. If needed, click Add mapping to map user attributes based on the service provider’s requirements. Security Journey only requires Name ID but additional attributes can be added to enrich your learner's profile, Platform reports or to create targeted training assignments. To learn more, check out <a href="https://help.securityjourney.com/en/articles/7031103-learner-attributes" rel="nofollow noopener noreferrer" target="_blank">Learner Attributes</a>
11. (Optional) To enter group names that are relevant for this app:
 1. For Group membership (optional), click Search for a group, enter one or more letters of the group name, and select the group name.
 2. Add additional groups as needed (maximum of 75 groups).
 3. For App attribute, enter the service provider’s corresponding groups attribute name.
12. Click Finish

Once app is created, you will need to upload the applications metadata to Security Journey's <a href="https://my.securityjourney.com/admin/settings" rel="nofollow noopener noreferrer" target="_blank">SSO Settings</a>.

Google Workspace SSO Setup