API Reference/Management/Tenants/SSO
POST
/v1/mgmt/sso/saml

Authorization

AuthorizationRequiredBearer <token>

< Project ID >:< Management Key > as bearer

In: header

Request Body

application/jsonRequired
tenantIdstring
settingsobject
redirectUrlstring
domainsarray<string>
ssoIdstring
curl -X POST "https://api.descope.com/v1/mgmt/sso/saml" \
  -H "Authorization: Bearer <token>" \
  -H "Content-Type: application/json" \
  -d '{
    "tenantId": "string",
    "settings": {
      "idpUrl": "string",
      "entityId": "string",
      "idpCert": "string",
      "roleMappings": [
        {
          "groups": [
            "string"
          ],
          "roleName": "string"
        }
      ],
      "attributeMapping": {
        "name": "string",
        "email": "string",
        "group": "string",
        "givenName": "string",
        "middleName": "string",
        "familyName": "string",
        "picture": "string",
        "customAttributes": {
          "property1": "string",
          "property2": "string"
        }
      },
      "spEncryptionKey": "string",
      "spSignKey": "string",
      "subjectNameIdFormat": "string",
      "spACSUrl": "string",
      "spEntityId": "string",
      "defaultSSORoles": [
        "string"
      ]
    },
    "redirectUrl": "string",
    "domains": [
      "string"
    ],
    "ssoId": "string"
  }'

OK

Was this helpful?

Next

Get Tenant's SAML/OIDC Settings GET

Next

Set Tenant's SAML Settings via Metadata URL POST