SAML 2.0: AppFollow SSO

AppFollow uses SAML 2.0 Compliant Version to provide Single Sing-On option. AppFollow performs as a service provider (SP), and your internal SSO service as an identity provider (IdP).

How to Set Up

IdP configuration

Configure these parameters in your IdP service:

  1. ACS URL:
  2. SP Entity ID:
  3. RelayState: the email associated with AppFollow owner
  4. Additional SAML attributes configuration:
  • Email: user's email
  • FirstName: user’s first name
  • LastName: user’s last name

After configuring parameters above your SSO-service should generate your  IdP URL, IdP Entity ID and x.509 Public Certificate.

I can’t configure RelayState in my SSO-service

If your service doesn’t have a field for RelayState, you might have a field called “Target Url”. You can pass RelayState through it like that:{{the email associated with AppFollow owner}}

Example of TargetUrl:

Also you need to find in “Advanced settings” the option “Send RelayState without URL encoding” and turn it on.

SP configuration in AppFollow

Save the following parameters in AppFollow SSO settings

  • Entity ID: IdP Entity ID *if your service doesn’t provide IdP Entity ID - than copy the value of IdP URL here*
  • SAML SSO URL: IdP URL that was generated by your SSO service
  • Public Certificate: Your x.509 certificate
You can only get these parameters after setting up your IdP

Need help? Hit the chat button or give us a shout at, we're all ears!

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.

Still need help? Contact Us Contact Us