Articles in this section
Authenticate Emails with SPF, DKIM, and SenderID Auto-forwarding your emails to Vtiger Automate Outgoing Emails in Email Settings Automation - Approvals Automation - Assignment Rules Automation - Multi-path Workflows Automation - Scheduled Workflows Automation - Scheduler Automation - Standard Workflows Automation - Webforms Automation - Workflow Action - Create Event Automation - Workflow Action - Create Records Automation - Workflow Action - Create Task Automation - Workflow Action - Invoke Custom Function Automation - Workflow Action - SMS Task Automation - Workflow Action - Send Mail Automation - Workflow Action - Update Fields Automation - Workflow Action - Webhook Automation - Workflows - Vtiger Expressions Configuration - Business Hours Configuration - Company Details Configuration - Consents Configuration - Customer Portal Configuration - Maps Configuration - Usage Details Configure Encrypted data fields in Vtiger CRM Configure Picklist Dependencies Considerations for Deactivating Vtiger Users Control Fields and Record Displays using Configuration Editor Create Reminders for Records and Inbox Create a field of a Grid type Customize your self-service portal theme using CSS styles Dealing with Currencies and Taxes Enable Desktop Notifications on Chrome Web Browsers Extensions - Extension Store IMAP Configuration - 2-way sync between Vtiger and IMAP providers Inventory - Payments and Subscriptions Inventory - Tax Management Inventory - Terms and Conditions Login to Vtiger on SSO SAML using ADFS Mailroom Functionality in Different Scenarios Manage Multiple Currencies Marketing & Sales - Forecast and Quota Settings Marketing & Sales - Pipelines and Stages Marketing and Sales - Deal to Project Mapping Marketing and Sales - Lead Conversion Data Mapping Marketing and Sales - Profile Scoring Module Management - Labels Editor Module Management - Module Numbering My Preferences My Preferences - Calendar Settings My Preferences - My Tags My Preferences - Notification Preferences Set up Mailroom Settings - Configure Module Settings Settings - Create Dynamic Fields and Layouts Module Management - Creating a Relationship Between Modules Settings - Customize Records and Fields for your Business Settings - How to set email autoresponder to Webform submission? Settings - Left Menu Settings - Manage Global Picklists in Vtiger Settings - Set up your Support Team Settings - Start Up Page Settings - Working with Picklist Values Module Management - Module Builder Support - SLA Policies Troubleshooting Login Issues Unsubscribe your Email User Management - Authentication User Management - Encrypted Field Access Logs User Management - Groups User Management - Login History User Management - Profiles User Management - Roles User Management - Settings Log User Management - Sharing Rules User Management - Users User Management - Vtiger Support Access Vtiger Buzz - Chrome Extension for Notifications Vtiger Implementation wizard Vtiger Language Support Websense - Trackers Websense - Widgets Configuration - Storage Guard Adding a local DNS Entry Adding Additional Hidden Fields to a Webform Configuring Dependent Fields and Blocks for Modules Duplicate Prevention in Modules Module Management - Modules Module Management - Module Layouts & Fields

SAML Support in Vtiger CRM

Learn how to set up SAML-based login in Vtiger.
Sabqat Ruba
29 Jan, 2021 - Updated 7 months ago


Security Assertion Markup Language or SAML helps identity providers (IDPs) pass credentials to service providers (SPs). You can use a single set of credentials to log in to different software, websites, or applications. 

To read more about SAML, click here


Vtiger supports Single Sign-On via SAML-based identity providers. 

What is Single Sign-On

Single Sign-On or SSO is a type of authentication that allows users to log in to multiple applications using one set of login credentials. Opting for SSO sheds the burden of maintaining separate usernames and passwords for each software off your shoulders. 

Feature Availability


Sales Starter

Sales Professional

Sales Enterprise

All-in-One Professional

All-in-One Enterprise

Feature Availability

SAML Login



Enabling SAML Login

To log in via your SAML server, you must add Vtiger as a service in your SAML-based IDP and simultaneously configure SAML in Vtiger.


Since each one of us might use a different IDP, let’s take the example of OneLogin to enable SAML login in Vtiger.


Follow these steps to enable SAML login in Vtiger using OneLogin:


Step 1: Enable SAML login in Vtiger.

  1. Log in to your CRM account.
  2. Click the User Menu on the top right corner of the CRM screen.
  3. Click Settings.
  4. Look for the User Management section.
  5. Select Authentication.
  6. Click the Edit icon on the Authentication page.
  7. Enable the checkbox beside SAML.

Note: Perform the step above regardless of the IDP that you are using.


Step 2: Perform the OneLogin setup.

  1. Log in to OneLogin.
  2. Click the Applications tab.
  3. Select Applications.
  4. Click the Add App button.
  5. Search for SAML Test Connector using the search bar.
  6. Select SAML Test Connector (IdP w/ attr w/ sign response).
  7. Set up a display name, icon, and other basic details. 
  8. Click Save.

Step 3: Set up SAML in Vtiger.


Note: Keep your Vtiger and OneLogin tabs open in your browser to perform this step.

  1. Click the SSO tab in OneLogin.
  2. Click View Details under X.509 Certificate in OneLogin.
  3. Copy the certificate and paste it into X.509 Certificate in Vtiger.
  4. Copy the following from OneLogin and paste them in Vtiger:
    • Issuer URL into IDP Entity ID
    • SAML 2.0 Endpoint (HTTP) into IDP SSO URL
    • SLO Endpoint (HTTP) into IDP SLO URL
  5. Click Save in Vtiger.
  6. Click the Configuration tab in OneLogin.
  7. Copy the following from Vtiger and paste them in OneLogin:
    • SP ACS URL into ACS (Consumer) URL Validator
    • SP ACS URL into ACS (Consumer) URL
  8. Insert a backslash (\) before each forward-slash (/) in ACS (Consumer) URL Validator to make it a regular expression.
  9. Click Save.

Handy details!

The NameID parameter in OneLogin is used to identify users. Vtiger expects the NameID parameter to be of the type Email and verifies it against the value in the Username field in Settings > User management > Users.


Follow these steps to set the NameID value:

  1. Click the Parameters tab in OneLogin.
  2. Select Email (SAML NameID).
  3. Select Email from the Value dropdown.
Home Privacy Policy Terms of Service Security Center Policy & Legal Center Contact Us
© Copyright 2021 Vtiger. All rights reserved.
Powered by Vtiger
Facebook Twitter Linkedin Youtube