JotForm User Guide / JotForm Enterprise /

How to Enable SSO Prefill

How to Enable SSO Prefill

IMPORTANT NOTE:
In order to use the SSO Prefill feature with your JotForm Enterprise forms, please make sure to properly configure sending attributes within your SSO app. You can check for platform specific instructions from the list below:

›››  OKTA IDP SSO PREFILL
›››  G-Suite SSO PREFILL
›››  AZURE SSO PREFILL
›››  AD FS SSO PREFILL


As soon as you are done with setting up the attributes sending on your SSO app end, you may enable SSO Prefill for your forms. Here's how it works:

1. Once you've built your form, navigate to the Settings tab and select Prefill in the left navigation.

2. Next, toggle the switch to Enable SSO Prefill.

3. You can then choose which attributes (i.e., name, email, job title, department, etc.) to prefill and map to your form fields when someone opens your form. The attributes will be automatically pulled from the user's profile stored on your SSO server.




OKTA IDP for SSO Prefill

This guide explains the required steps for setting up SSO Prefill for an already configured OKTA SAML SSO Application. 

What would you need?

 -  Okta Account with a working SAML Application with JotForm Enterprise
 -  Admin permissions for the said Okta Account

Steps:

1. Go to Okta Admin page:


2. Navigate To Applications page:


3. Select the Application to edit:


4. Click "Edit" Button for the "SAML Settings" under the "General" tab:


5. Click "Next" button to reach the "Configure SAML" tab and scroll down to the "Attribute Statements (optional)" sub setting.

6. Set the values as follows (click "Add Another" button to add a new row):

Name: First Name
Value: user.firstName

Name : Last Name
Value: user.lastName

Name: Email
Value: user.email

Name: Phone Number
Value: user.primaryPhone


7. Click "Next" > "Finish" to complete the setup and proceed to Enabling  SSO Prefill for your JotForm Enterprise forms.



G-Suite for SSO Prefill

This section of the guide aims to explain the required steps for setting up SSO Prefill for an already configured G-Suite SSO Application.

What would you need?

 - G-Suite Account with a working SAML Application for JotForm Enterprise
 - Admin permissions for the G-Suite Account

Steps:

1. Go to G-Suite Admin page and navigate to the Apps:



2. Go to SAML Apps:



3. Select your current SAML configuration under Services:



4. Select "Configure SAML attribute mapping":



5. Set the following values by clicking "ADD MAPPING" button:



Google Directory attributes: First name
App attributes: First Name

Google Directory attributes: Last name
App attributes: Last Name

Google Directory attributes: Primary email
App attributes: Email

Google Directory attributes: Phone number
App attributes: Phone Number



6. Save the configuration and proceed to Enabling  SSO Prefill for your JotForm Enterprise forms.




AZURE for SSO Prefill

The required steps for setting up SSO Prefill for an already configured Azure SSO Application.

What would you need?

 - Azure Portal Admin Account with a working SAML Application with JotForm Enterprise
 - Global Administrator, Cloud Application Administrator, Application Administrator, or owner of the app permissions for the Azure Portal Account

Steps:

1. Go to Azure Portal Home page and navigate to Enterprise applications -> All applications and select your JotForm SSO application:



2. Select Single sign-on from the menu on the left side:



3. Proceed to the Edit button in the "User Attributes & Claims" section: 



4. Create or update claims pairs for Claim name and Value as shown below:

Claim name: First Name
Value: user.givenname

Claim name: Last Name
Value: user.surname

Claim name: Email
Value: user.mail

Claim name: Phone Number
Value: user.telephonenumber



5. Save and proceed to Enabling  SSO Prefill for your JotForm Enterprise forms.



AD FS for SSO Prefill

In order to set up SSO Prefill for an already configured AD FS Relying Party Trust, please follow the steps below. 

What would you need?

 - AD FS Server with working SAML 2.0 SAML Application for JotForm Enterprise
 - Management Permissions for AD FS

Steps:

1. Open AD FS Management Console and go to "Relying Party Trusts" on the left.

2. Right click on the application you wish to edit and select "Edit Claim Issuance Policy":



3. Click "Add Rule..." button and select the "Send LDAP Attributes as Claims":



4. Click "Next" button and enter a "Claim Rule Name":



5. Select "Active Directory" for the Attribute Store dropdown and set the mapping table as follows. 

Please select the LDAP Attribute from the dropdown list and type in manually the Outgoing Claim Type names:

Attribute: Given-Name
Outgoing Claim Type: First Name

Attribute: Surname
Outgoing Claim Type: Last Name

Attribute: E-Mail-Addresses
Outgoing Claim Type: Email

Attribute: Telephone-Number
Outgoing Claim Type: Phone Number



6. Click Finish to finish editing Claim Rule > Apply to save the changes on Claim Issuance Policy and  OK to close Claim Issuance Policy. 

7. Proceed to Enabling  SSO Prefill for your JotForm Enterprise forms.

Contact Support:
Our customer support team is available 24/7 and our average response time is between one to two hours.
Our team can be contacted via:
Contact JotForm Support: https://www.jotform.com/contact/

Send Comment