Set your Vivi organisation to SAML authentication, you will need the metadata XML throughout:
Enter the "Add Relying Party Trust" wizard as usual.
Welcome Click "Start".
Select Data Source Select "Enter data about the relying party manually" and click "Next >".
Specify Display Name Enter whatever you'd like for the "Display name", "Vivi" is probably fine, then click "Next >".
Choose Profile Leave "AD FS profile" selected and click "Next >".
Configure Certificate Leave as default and click "Next >".
Configure URL Leave as default (we'll fill these in later) and click "Next >".
Configure Identifiers Add the metadata XML URL as the identifier, should be https://api.vivi.io/api/v1/saml_metadata/<organisation_id> (also labelled as 1 above), make sure to click "Add" then "Next >".
Configure Multi-factor Authentication Now? Configure as desired, but leave as default if in doubt, then click "Next >".
Choose Issuance Authorization Rules Configure as desired, but leave as default if in doubt, then click "Next >".
Ready to Add Trust Just click "Next >".
Finish Untick the box to avoid editing claims straight away, then click "Close".
Now go back in by right clicking the new Relying Party Trust and selecting "Properties".
Go to Signature and "Add.." the signing certificate from the metadata XML. This is labelled as 2 above, the easiest way is to copy and paste the data into a file with extension cer.
Go to Endpoints and "Add SAML.." two endpoints:
- Endpoint type: SAML Assertion Consumer, Binding: POST, Default: yes, Trusted URL: should be https://api.vivi.io/api/v1/users/saml labelled as 3 above.
- Endpoint type: SAML Lagout, Binding: POST, Trusted URL: should be https://api.vivi.io/api/v1/saml_logout/<organisation_id> labelled as 4 above, Response URL: same as Trusted URL.
You can then click "OK" to save the settings.
Now you can follow the regular steps of configuring the claims and Vivi.