MonoSign Configuration

FSProtect can be integrated with the MonoSign system to make the authentication process easier. The following configurations must be completed in order to integrate.

SAML Connection Configuration:

In the MonoSign administrator dashboard, navigate to Applications and select Add New → Create From Scratch.

After giving it a display name, click Create Application

And then Acces Settings needs to be configured according to organisations needs.

After creating the application, go to Application Dashboard → Keys → Add New Key.

In the key creation screen, SAML should be selected and the Create option should be applied.

Download IdP Metadata with clicking Download IdP Metadata button.

Save this file and upload it to FSProtect. FSProtect will parse it to pull in MonoSign’s endpoints and certificates.

Press Configure Button and Fill with following information:

ACS URL: This value is copied from FSProtect after the SSO settings are saved. It must exactly match FSProtect’s ACS URL.

Role and Username Mapping Settings

In MonoSign’s Attributes tab, add the following two assertion attributes so FSProtect can read them:

Username Attribute Key

• Attribute: FSProtect Username Attribute Key

• Value: {{UserName}}

• Press plus icon to save

Role Attribute Key

• Enabled: True

• Attribute Name: FSProtect Role Attribute Key

• Format: {{Name}}

Once the MonoSign app configuration has been saved:

1. The IdP Metadata XML must be downloaded from the IdP.

2. In FSProtect’s New Provider screen, the XML must be uploaded via the XML Upload Field.

3. The configuration must be saved in FSProtect.

4. MonoSign users or groups must then be assigned to the app.

After these steps, FSProtect SSO Login will function with correct username and role mappings.