Skip to main content

Integration Steps

1. Configure HostedScan as Service Provider

Step 1.1: Access SAML Settings

  1. Log in to your HostedScan account
  2. Navigate to SettingsSAML SSO
  3. Ensure you're on the Premium plan (upgrade required if not)

Step 1.2: Access Service Provider Metadata

  1. In the SAML settings, you'll find a link to your Service Provider Metadata
  2. This metadata contains:
    • Entity ID (SP Identifier)
    • Assertion Consumer Service (ACS) URL
    • X.509 Certificate for signature verification
    • Supported Name ID formats

2. Configure Your Identity Provider

Step 2.1: Add HostedScan as Service Provider

  1. Log in to your IdP administration console
  2. Navigate to Applications or Service Providers
  3. Add a new SAML application/service provider
  4. Upload the HostedScan SP metadata XML

Step 2.2: Configure IdP Settings

Configure the following in your IdP:

  • Name ID Format: urn:oasis:names:tc:SAML:1.1:nameid-format:emailAddress
  • Sign Assertions: ✅ Required - Must be enabled
  • Sign Requests: ✅ Required - Must be enabled

3. Complete HostedScan Configuration

Step 3.1: Obtain IdP Metadata

  1. From your IdP, download the Identity Provider metadata XML
  2. This must contain:
    • IdP Entity ID
    • Single Sign-On Service URL
    • X.509 Certificate for signature verification
    • Supported bindings and protocols

Step 3.2: Configure IdP Settings in HostedScan

  1. Return to HostedScan SAML settings
  2. Paste the IdP metadata XML into the configuration field
  3. HostedScan will automatically extract:
    • IdP Entity ID
    • SSO URL
    • X.509 Certificate