Skip to main content
Skip table of contents

Veeam SAML Integration

This document explains how to implement MonoSign with Veeam. It covers Single Sign-On. Before you continue, it is better to start with Jenkins SAML Plugin Single Sign-On implementation page.

View Veeam SAML Metadata

In order to configure the SAML key on MonoSign for Veeam SSO, you need to have various information provided by Veeam.
First, navigate to Configuration > Settings from the sidebar and click SAML Authentication tab.

SAML option will be disabled by default since it is not configured. Click Enable SAML 2.0 button under the option. On the bottom of the page you will view SAML configurations.

For now, we will stop here on the Veeam side and create a MonoSign application and related SAML key.

Creating an Application and Access Key on MonoSign

Create your application on MonoSign and make sure you typed Veeam URL to URL input.

Next switch to Access tab and select Profile Access Type value as All.

Once you created the application and navigated to the detail page, click Keys and Add New Key to create a SAML access key.

In the opened modal, choose SAML as Key Type and switch to SAML2 Settings.
Fill in the necessary fields and add some Extra Attributes according to the information provided by Veeam. Correspondings of the fields are as below.

Field

Value

Assertion Consumer Url

https://<your.veeam.adress>/Saml2/Acs

Entity Id

https://<your.veeam.adress>/Saml2

Name Id

Email

Extra Attributes

username

{{UserName}}

email

{{Email}}

Click Save and you are gonna see your configuration for your access key as follows;

Configuration Single Sign-On for Veeam

We are gonna move on to where we left off on the Veeam SAML Authentication page which is mentioned in the first chapter. Fill in the necessary fields according to the access key created on MonoSign. Correspondings of the fields are as below.

Field

Value

Entity ID

Entity Id from the application SAML key

Login URL

Sing On Service from the application SAML key

Binding

HttpRedirect

IdP Certificate

X509 format of the certificate issued to access key - can be downloadable from the key detail.

You need to view your certificate in x509 format. in that case, we prefer using OpenSSL - “a robust, commercial-grade, full-featured toolkit for general-purpose cryptography and secure communication.”

Use the command below to view the certificate.

CODE 
openssl x509 -in {path of your certificate} -text

The output contains various information about the certificate. However, you should check the text starts with “-----BEGIN CERTIFICATE-----”. At the end your form should look as follows;

Click Save, Veeam will direct you to MonoSign login page like as below.

If any error occurs while processing, please contact support.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close