# JumpCloud Setup

{% hint style="warning" %}
Before continuing, this user should be a JumpCloud admin for the organization, and a SAML Config must be created in the Integration Gateway Environment.
{% endhint %}

### Create the Integration Gateway SSO Application in JumpCloud <a href="#jumpcloudsso-basicsetuphowto-createtheglyuessoapplicationinjumpcloud" id="jumpcloudsso-basicsetuphowto-createtheglyuessoapplicationinjumpcloud"></a>

From the JumpCloud dashboard, select **SSO** from the left-hand navbar and click the **Add New Application** button.

<figure><img src="/files/TaDAPLsCWpc2jlve67au" alt=""><figcaption></figcaption></figure>

At the bottom of the page, click the **Custom SAML App** button.

<figure><img src="/files/gdm5DIFsV3oUZezM4dXF" alt=""><figcaption></figcaption></figure>

Provide a **Display Label**. We recommend something like Integration Gateway **DEV,** Integration Gateway **PROD**, etc. Provide a **Description** if desired.

<figure><img src="/files/F07RPOhcx8Qg385bwgNk" alt=""><figcaption></figcaption></figure>

### Provide Integration Gateway's SAML Metadata to JumpCloud <a href="#jumpcloudsso-basicsetuphowto-provideglyuessamlmetadatatojumpcloud" id="jumpcloudsso-basicsetuphowto-provideglyuessamlmetadatatojumpcloud"></a>

Click the **SSO** tab.

{% hint style="info" %}
The Integration Gateway environment SAML metadata will be required for the next step.

Integration Gateway always serves its metadata at `https://`\[domain]`/sso/saml2/metadata/`. If this user is also a Integration Gateway administrator, the metadata URL will be displayed on the **Admin** site under **SAML Configs**.
{% endhint %}

Click the **Upload Metadata** button and upload the metadata provided by Integration Gateway.

<figure><img src="/files/GjsDp1KtRjrYVvBBpiqe" alt=""><figcaption></figcaption></figure>

Provide a custom **IdP Entity ID**. Any unique value will do.

<figure><img src="/files/yFmKNVT1KfPhO4mU2XKj" alt=""><figcaption></figcaption></figure>

### Add Users <a href="#jumpcloudsso-basicsetuphowto-addusers" id="jumpcloudsso-basicsetuphowto-addusers"></a>

On the **User Groups** tab users/groups can be assigned to the application. Only assigned users/groups will be able to authenticate with Integration Gateway via JumpCloud.

<figure><img src="/files/r0Y3P44BL70o1HXJUvUt" alt=""><figcaption></figcaption></figure>

Add the desired users/groups for the organization. This can also be done later.

### Activate the SSO App <a href="#jumpcloudsso-basicsetuphowto-activatethessoapp" id="jumpcloudsso-basicsetuphowto-activatethessoapp"></a>

Click **Activate** at the bottom of the screen.

Back in **Configured Applications**, select the new SSO App and click **Export Metadata.**

<figure><img src="/files/8ndVsle43ggtJGg16qYU" alt=""><figcaption></figcaption></figure>

An XML file should be downloaded. This file will be needed on the Integration Gateway side in order to add JumpCloud as an IdP, which is the last step. If not a Integration Gateway admin, please provide this file to a Sandbox Banking employee.

{% hint style="warning" %}

#### Lastly… <a href="#azuresso-basicsetuphowto-lastly" id="azuresso-basicsetuphowto-lastly"></a>

Don’t forget to assign users or groups to the new application- otherwise they won’t be able to authenticate with Integration Gateway via SSO.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://glyue.docs.sandboxbanking.com/how-to-guides/how-to-set-up-single-sign-on-sso/jumpcloud-setup.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.