Third-Party SAML

How can I use a third-party SAML with BambooHR?

Purpose: To help you understand what you can use SAML for and how you can integrate a third-party SAML with BambooHR.

Security Assertion Markup Language (SAML) is an XML-based open standard data format for exchanging authentication and authorization data between parties, in particular, between an identity provider and a service provider. Installing this app in your BambooHR account will enable you to configure Single Sign-On between your identity provider and BambooHR (as the service provider) using SAML 2.0.

You can learn more about SAML in BambooHR Marketplace.

By installing this app in your BambooHR account, you enable BambooHR as a service provider for SAML, web-based single sign-on (SSO). After installing, you can save the SAML endpoint URL and SAML certificate information given to you by your SAML identity provider (OneLogin, Okta, etc.). Upon successful configuration, you will enjoy seamless web-based single sign-on into BambooHR from your single sign-on portal or company intranet.

To add a third-party SAML in BambooHR, navigate Settings and select Apps. Find SAML and click Install.

Please note you must be a Full Admin user to set up this integration.

To install your third-party SAML, enter the SSO Login URL and x.509 Certificate from your SAML provider. Click Install.

Once saved, users can log in to BambooHR using their SAML account.

Please note that using a third-party SAML extends to BambooHR's mobile app so users can log in to the app using single sign-on through the third-party SAML.

SAML configuration

If your SAML provider configures with a metadata url, you will use this: https://<tenant>

If your SAML provider asks for additional information, you will likely need this information below:

  1. Entity ID: BambooHR-SAML
  2. Reply URL: https://<tenant>
  3. Name ID: A work email address or home email address in BambooHR
Where do I go for SAML support?

BambooHR supports the SAML connection within BambooHR only. This does not extend to your SAML provider. If you are experiencing trouble with your SAML connection, please reach out to your SAML provider.

What's next?

Do you need help creating your employee access levels?

Have you enabled your employees with self-service access yet?

Do you need help sending an employee a link to reset their password?