Steps to configure SAML SSO for Dropbox
About Dropbox
Dropbox is a cloud storage service that enables users to securely store and access files from anywhere with an internet connection, facilitating easy file synchronization and sharing. It offers a range of features, including advanced security options, collaborative tools, and flexible storage plans, to meet the needs of individuals and businesses alike.
The following steps will help you enable single sign-on (SSO) for Dropbox from Identity360.
Prerequisites
- The MFA and SSO license for Identity360 is required to enable SSO for enterprise applications. For more information, refer to our pricing details.
- Log in to Identity360 as an Admin or Super Admin.
- Navigate to Applications > Application Integration > Create New Application, and select Dropbox from the applications displayed.
Note: You can also find Dropbox from the search bar located at the top.
- Under the General Settings tab, enter the Application Name and Description.
- Under the Choose Capabilities tab, choose SSO and click Continue.
General Settings of SSO configuration for Dropbox.
- Under Integration Settings, navigate to the Single Sign On tab and click Metadata Details. Copy the Login URL and Logout URL values and click Download from the Signing Certificate field. These will be used later during the Dropbox configuration.
Integration Settings of SSO configuration for Dropbox.
Dropbox (service provider) configuration steps
- Log in to Dropbox with admin privileges.
- Navigate to the Admin console and click Settings in the left sidebar.
- Under Security, click Single sign-on.
- Use the drop-down to change the Single sign-on setting from Off to Optional or Required based on your need.
Note: Selecting Optional will allow users to log in to Dropbox with SSO or their Dropbox password. Selecting Required will only allow users to log in through SSO.
Dropbox SAML SSO setup.
- In the Identity provider sign-in URL field, click Add sign-in URL and enter the Login URL you copied in step 6 of prerequisites. In the X.509 certificate field, click Upload certificate to upload the Signing Certificate you downloaded in step 6 of prerequisites.
- In the SSO sign-in URL field, click Copy link and copy the value, which will be used to enter the Unique ID of your Dropbox account during the Identity360 configuration.
Dropbox SSO configuration.
- Click Save.
SSO configuration saved in Dropbox.
Identity360 (identity provider) configuration steps
- Switch to Identity360's application configuration page.
- Enter the Unique ID of your Dropbox application. Obtain this value from the SSO sign-in URL copied during Dropbox configuration. For example, if your sign-in URL is https://www.dropbox.com/sso/60617621207, then the Unique ID will be 60617621207.
- Enter the Relay State parameter, if necessary.
Note: Relay State is an optional parameter used with a SAML message to remember where you were or to direct you to a specific page after logging in.
- Click Save.
Integration Settings of SSO configuration for Dropbox.
- To learn how to assign users or groups to one or more applications, refer to this page.
Your users will now be able to sign in to Dropbox through the Identity360 portal.
Note: For Dropbox, both SP-initiated and IdP-initiated flows are supported.
Steps to enable MFA for Dropbox
Setting up MFA for Dropbox using Identity360 involves the following steps:
- Set up one or more authenticators for identity verification when users attempt to log in to Dropbox. Identity360 supports various authenticators, including Google Authenticator, Zoho OneAuth, and email-based verification codes. Click here for steps to set up the different authenticators.
- Integrate Dropbox with Identity360 by configuring SSO using the steps listed here.
- Now, activate MFA for Dropbox by following the steps mentioned here.
How does MFA for applications work in Identity360?