Grammarly SAML Integration

This document explains how to implement MonoSign with Grammarly. It covers Single Sign-On. Before you continue, it is better to start with Grammarly’s Single Sign-On implementation page.

Creating an Application on MonoSign

Navigate to Applications page by clicking Applications button on the navigation bar. To create a new application, please click the “Add New“ button. “Add New“ button navigate you to Application Create Page.

NavigateToApplications.png
Navigate to Applications Page
AddNewApplication.png
Add a New Application

Firstly, let’s start setting up the Application Name, Application URL and Application Logo on Application Create Page. Application URL must be the one that “Grammarly“ will give us while configuring SAML Authentication method.

To configure the SAML authentication method on Grammarly, admin user needs to navigate to Administration Authentication page and click the configure button.

ConfigureGrammarlySAML.png
Configure Grammarly SAML Authentication

Admin user will see a “Copy Link“ to get SSO Sign-in URL. When “Copy Link“ clicked, it will copy the URL to clipboard.

GrammarlyLoginURL.png
Copy SSO Sign-in URL

Once SSO URL copied to clipboard, please go to MonoSign Management “Application Create“ page, fill in the inputs as shown and click the “Finish“ button.

ApplicationNameURLLogo.png
Application Settings
ProfileAccessTypeFinish.png
Application Settings

Fields

Description

Name

Application Name that will be displayed applications page

URL

Application URL that copied from “Grammarly“ application SSO SAML authentication configuration page

Logo

Application Logo that will be displayed applications page

Profile Access Type

User Profile Information that “Grammarly“ application needs to be mapped

Once application is created successfully, system will navigate you to Application Detail page.

NavigateToKeys.png
Navigate To Keys

Click the “Keys“ tab on Application Detail Page and then click the “Add New Access Key“ to add a SAML access key to the “Grammarly” Application.

AddNewKey.png
Add an Application Access Key

A modal will open when the button clicked. SAML2 Settings tab will be generated when you select “SAML” key type on the modal.

KeyTypeSAML.png
Selecting Key Type

You need to follow the instructions on the IdP(Identity Provider) configure page and you need to fill in the inputs SAML2 Settings tab as shown.

SAMLSettings1.png
SAML2 Access Key Settings 1
SAMLSettings2.png
SAML2 Access Key Settings 2
SAMLSettins3.png
SAML2 Access Key Settings 3

It’s so important that you fill in the inputs correctly. Otherwise SAML authentication will not be performed.

SAML2 Settings

Value

Assertion Consumer Url

https://sso.grammarly.com/saml/assertion

Audience

https://sso.grammarly.com/saml/metadata

Entity Id

https://sso.grammarly.com/saml/metadata

NameId Format

urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress

Name Id

Email

Exclude NotBefore

From Subject → Active

Extra Attributes

Mappings:

EmailAddress → {{Profile.PersonalEmail}}

FirstName → {{Profile.FirstName}}

LastName → {{Profie.LastName}}

When all the inputs are filled, please click the “Save“ button. The SAML application key will be generated as shown.

SAMLSettings4.png
Generated SAML Application Access Key


Certificate input corresponds to the x509 format of the issued certificate for your SAML key on MonoSign.

You need to view your certificate in x509 format. in that case, we prefer using OpenSSL - “a robust, commercial-grade, full-featured toolkit for general-purpose cryptography and secure communication.”

Use the command below to view the certificate.

openssl x509 -in {path of your certificate} -text

The output contains various information about the certificate. However, you should check encryption algorithms and the text starts with “-----BEGIN CERTIFICATE-----” and ends with “-----END CERTIFICATE-----“.

Now you can open the “Grammarly“ authentication page to configure SAML SSO configurations as shown.

SAMLSettings4GrammarlySettings.png
SAML Application Access Key Configuration on Grammarly

Configurations are completed on MonoSign Grammarly Application Key page and Grammarly Authentication Configuration page. Now you can click the “Test SSO“ button to make sure everything is done correctly and to navigate MonoSign Grammarly Application.

If you type your MonoSign username and password, you will authenticate to Grammarly application.

MonoSignGrammarlyLogin.png
Test SAML SSO Login

If you see “Info Message“ as shown, it means the test is successful and everything is to activate SAML SSO authentication on Grammarly.

ActiveSSOGrammarly.png
Activate SSO on Grammarly

Please click to “Active SSO“ button to enable SAML SSO authentication method on Grammarly.

ActivatedSAMLSSO.png
Activated SAML SSO Authentication

If you see that SAML Authentication is activated, it means everything seems perfect.

You can invite your coworkers to Grammarly on the members section. The members on Grammarly can access to Grammarly application via MonoSign SSO.