# Configure SAML (Verify Users for External Applications)

You can configure your organization's **SAML** identity provider settings for provisioning Faronics Deploy access.

![Select User Management](https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MVs2gk2CLhd5186xQKI%2F-MVs7Kva2gvJ1zMxfhLU%2Fimage.png?alt=media\&token=f234f87d-1d56-41f0-8e1e-7454baa6919a)

1\. Navigate to the User icon <img src="https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MTvmw1ZLwgR0jW81lod%2F-MTvqJhwps2hb2GV4Dxk%2Fprofilebutton.png?alt=media&#x26;token=05414406-cdb3-4b30-a12b-7f1558777232" alt="" data-size="original"> on the top right corner of the Deploy console. &#x20;

2\. Select **User Management** from the drop-down menu.&#x20;

3\. Select the **SAML** button within the User Management section.&#x20;

![Select the SAML Button](https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MVs2gk2CLhd5186xQKI%2F-MVs7gp_Aj-AlejgbWqK%2Fimage.png?alt=media\&token=5252bee8-5ed6-4e75-b63b-2b99d55107af)

4\. Enter a **Login Domain**, choose a unique domain identifier for **SAML** Login. The Service Provider Configuration will now update:&#x20;

**Service Provider Configuration**

a. **Audience** **URL** - <https://deploy.faronics.com/saml?dn=faronics1>

b. **SAML** **Login** **URL** - <https://deploy.faronics.com/Account/Signin?dn=faronics1>

c. **Assertion Consumer URL** - <https://deploy.faronics.com/saml/Acs?dn=faronics1>

{% hint style="info" %}
**Note**: Recipient, destination, and ASC validator URL will be the same as ACS URL.

<https://deploy.faronics.com/saml/Acs?dn=faronics1> in this example.
{% endhint %}

![SAML Configuration](https://3007061244-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-MRkQfx_2cLnNNBX1muO%2F-MVsBr2nJ5rK7QXvQD0u%2F-MVsDbCCwpQmqeJJboVq%2Fimage.png?alt=media\&token=64a0ba99-d6da-46ab-a6f3-816fceb7956e)

5\. Enter your **Identity Provider Login URL**.

6.Enter your **Entity ID**.

7\. Click **UPLOAD** to upload the identity provider metadata.

8\. Paste in the **Identity Provider Certificate**.

9\. Click **UPLOAD** to upload the **Identity Provider Certificate**.

10\. Select **Advanced Options**,  then select the user permission level - **Administrator/Remote Support**.&#x20;

11\. Click **SAVE**.

{% hint style="info" %}
**Note**: Users will get access to all the sites by default. You can edit the user's permission later via **User Administration**.
{% endhint %}

{% hint style="success" %}
The SAML configuration has now been successfully created and configured.
{% endhint %}