Security Journey (formerly HackEDU) does provide the ability to gate access to the Platform by enabling Single Sign-On (SSO) for login. We can integrate with any SAML 2.0 identity provider such as OneLogin, Ping Identity, Okta, Keycloak, ADSF, Shibboleth, and Azure AD.
You can locate specific provider setup documentation here.
General SSO Setup Instructions:
Entity ID: urn:amazon:cognito:sp:us-east-1_CHi5tsM8X
SAML POST endpoint: https://auth.hackedu.com/saml2/idpresponse
Login URL:
If you are using the Legacy HackEDU Platform you will use this: https://app.hackedu.com/login?domain=domain.com
If you are setting up SSO for my.securityjourney.com you will use this: https://my.securityjourney.com/?domain=customerdomain.com
Once you have created the SSO connection on your side, you will need to upload your metadata .xml file or URL on the Platform. SSO can be turned off and on as needed once enabled. This is a global setting and will apply to all users.
Security Journey Setup:
The SSO settings are located here:
You will need to upload your metadata.xml or metadata URL to the UI, click the toggle "ON" and click "Update SSO" to save your changes.
HackEDU Setup:
The SSO settings are located on HackEDU under Admin > Settings > SSO:
Deactivate SSO
You can deactivate SSO by clicking the toggle button to "Disable SSO Integration."
Email Domains
We recommend having all company domains added to your domains list on the Platform. If you need additional email domains added to the Platform for authentication, please email support@securityjourney.com or use our live chat located in the bottom right corner of the Platform.