eCase Help
Print

G Suite

G Suite provides a step by step wizard for adding a new SAML App.

Initially, open the SAML Settings page in eCase so that you can copy and paste values to and from this page.

  1. Once signed into eCase, go to the More menu on the eCase menu bar and click on the drop down arrow.
  2. Select the SAML Settings link under the Settings column. The SAML Settings page appears.


In the G Suite Admin console, follow the steps below:

  1. Click Apps
  2. Click SAML Apps
  3. Click the Add button
  4. Click Set up my own custom app
  5. Information about the Google IdP will be shown. Copy the following values and paste them into their respective fields on the eCase SAML Settings page:

    Google IdP SAML Settings field on eCase
    SSO URL Enter in the IdP Endpoint URL field
    Entity ID Enter in the IdP Entity ID field
    X.509 Certificate
    - Download the X.509 certificate
    - open it in Notepad
    - copy the value     		Paste the copied X.509 Certificate into the IdP X.509 Certificate field.
  6. Click Next to go to the Basic Information screen. Enter a value of your choice for the application name, for example, eCase.
  7. On the Service Provider Details screen, you will need to copy values from the SAML Settings page.

    Service Provide Details Value from SAML Settings page on eCase
    ACS URL Enter the SP Endpoint URL
    Entity ID Enter the SP Entity ID
    Name ID Select an appropriate immutable attribute from your user attributes. See the attribute table below.
    Other values (Start URL, Signed response, Name ID format) Do not specify
  8. On the Attribute Mapping screen, add three attribute mappings as follows:

    Application Attribute Value
    http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress Basic Information - Primary Email
    http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname
    		 Basic Information - First Name
    http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname
    		 Basic Information - Last Name

    NOTE It is your responsibility to ensure that the Name ID is a unique, unchanging identifier for an individual user. eCase will create a duplicate account for a user if their Name ID changes. For this reason, we do not recommend using the default value of "Primary Email address" as this value may change if a user's name changes.

    You will also need to enable the SAML App for appropriate units or groups in your organisation before they can use G Suite to Sign in to eCase. This is beyond the scope of this guide – please consult the G Suite documentation.
  9. Follow the instructions on the Test SAML Single Sign On Settings page prior to enabling SSO

eCase Online Learning
Accessibility Statement

Contact Us

support@ecase.co.uk