How to Configure SAML 2.0 for RingCentral


    Supported Features

    The Okta/RingCentral SAML integration currently supports the following features:

    For more information on the listed features, visit the Okta Glossary.

    Configuration Steps

    1. Login to RingCentral as as administrator.

    2. Go to: More > Security and Compliance > Single Sign-on:


    3. In the Set up SSO by yourself section, click Edit:


    4. Use the link below to download and save your IdP Metadata file:

      Sign into the Okta Admin dashboard to generate this value.

    5. In the Upload IdP Metadata section, select Upload with file from the dropdown menu, then click Browse to locate and update the metadata file you just saved (step 4):


    6. In the Attribute Mapping section, select Custom from the Map Email Attribute to dropdown menu, then enter email in the field that appears:


    7. Click Save:


    8. In the Set up SSO by yourself section, click Download to obtain your SP metadata:


    9. Open the SP metadata file you just downloaded in a text editor and take note of the entityID and Location values,


    10. In Okta, select the Sign On tab for the RingCentral app, then click Edit:

      • Default Relay State: Enter: https://service.ringcentral.com/mobile/ssoLogin.

      • Audience Restriction: Copy the entityID value from the metadata file (step 11) into this field.

      • ASC URL: Copy the Location value from the metadata file (step 11) into this field.

      • Click Save:


    11. Go back to Single Sign-on (SSO) in RingCentral, then follow the steps below:

      • Check Enable SSO Service.

      • Manage Your Login: Select your login type.

      • Click Save:


    12. Done!


    The following SAML attributes are supported:

    SP-initiated SSO

    1. Go to https://service.ringcentral.com/login/startupSSOLogin.html.

    2. Enter your email address.
    3. Click Submit.
    4. ringcentrali.png