Home Advanced Features Explained Setting up SAML

Setting up SAML

Last updated on Nov 10, 2025

Setting up SAML

SAML is a method of single sign-on (SSO) authentication between a service provider (VowChat) and an identity provider (your organization's system).

Prerequisites

  • Have a work Identity Provider (IdP) in place

  • Understand that once enabled, users can only login via SAML

  • Best to restrict users to your specific domain

Setup Steps

Step 1. Navigate to Settings → Security

Security settings

Step 2. Configure required SAML settings:

SAML configuration

  • SSO URL: Your identity provider's SSO endpoint

  • Identity Provider Entity ID: Your IdP's unique identifier

  • Signing Certificate: Your IdP's X.509 certificate

Step 3. Configure User Attribute Mappings (required):

  • email

  • first_name

  • last_name

Technical Configuration

ACS URL (Assertion Consumer Service)

app.vowchat.ai/omniauth/saml/callback?account_id=<your-account-id>

SP Entity ID (Service Provider)

app.vowchat.ai/saml/sp/<your-account-id>

Login URL

https://app.vowchat.ai/app/login/sso

Important Considerations

  • First-time login creates user account automatically

  • User information is not automatically updated after initial creation

  • Once SAML is enabled, users cannot access VowChat with their password

SAML enabled

User Experience

  1. User goes to VowChat login page

  2. Clicks "Sign in with SSO"

  3. Redirected to your IdP for authentication

  4. Upon successful authentication, redirected back to VowChat

Enable SAML to provide secure, centralized authentication for your organization.