Steps to configure SAML SSO for monday.com

About monday.com

monday.com is a customizable project management platform that enables teams to plan, execute, and track projects efficiently through visual dashboards and automation tools.

The following steps will help you enable single sign-on (SSO) for monday.com from Identity360.

Prerequisites

1. The MFA and SSO license for Identity360 is required to enable SSO for enterprise applications.
2. Log in to Identity360 as an Admin, Super Admin, or Technician with a role that has Application Integration and Single Sign-on permissions.
3. Navigate to Applications > Application Integration > Create New Application, and select monday.com from the applications displayed.
   Note: You can also find monday.com from the search bar located at the top.
4. Under the General Settings tab, enter the Application Name and Description.
5. Enter the Sub Domain of monday.com. For example, if your monday.com URL is xyz.monday.com, then xyz is the Sub Domain you should use.
6. Under the Choose Capabilities tab, choose SSO, then click Continue.
   General Settings of SSO configuration for monday.com.
7. Under Integration Settings, navigate to the Single Sign On tab, then click Metadata Details. Copy the Login URL, Entity ID, and Signing Certificate. These will be used later during the configuration of monday.com.
   Integration Settings of SSO configuration for monday.com.

monday.com (service provider) configuration steps

1. Login to your monday.com instance as an Administrator.
2. Navigate to Administration > Security.
3. In the SSO Provider section, select the Custom SAML 2.0 radio button.
4. Under Provider Information, paste the following details copied in step 7 of prerequisites.
• In the SAML SSO Url field, paste the Login URL.
• In the Identity provider issuer field, paste the Entity ID.
• In the Public certificate field, paste the Signing Certificate.
5. When setting up SSO, the admin will need to select the login restrictions policy level, meaning they will need to define who must use SSO authentication to log in, or if it is optional. You can choose based on your organization needs.
6. Under the Add SSO provider section, click Activate.

Identity360 (identity provider) configuration steps

1. Switch to Identity360's application configuration page.
2. Enter the Relay State parameter, if necessary.
   Note: Relay State is an optional parameter used with a SAML message to help you remember where you were or to direct you to a specific page after logging in.
3. Click Save.
   Integration Settings of SSO configuration for monday.com.
4. To learn how to assign users or groups to one or more applications, refer to this page.

Your users will now be able to sign in to monday.com through the Identity360 portal.