How to Configure SAML 2.0 for RingCentral


    Supported Features

    The Okta/RingCentral SAML integration currently supports the following features:

    For more information on the listed features, visit the Okta Glossary.

    Configuration Steps

    1. Login to RingCentral as as administrator.

    2. Go to: More > Security and Compliance > Single Sign-on:


    3. In the Set up SSO by yourself section, click Edit:


    4. In the Upload IDP Metadata section:

      • Select URL from the dropdown menu.

      • Enter the following Metadata URL :

        Sign into the Okta Admin dashboard to generate this value.

      • Click Import:


    5. In the Attribute Mapping section, select Custom from the Map Email Attribute to dropdown menu, then enter email in the field that appears:


    6. Click Save:


    7. In the Set up SSO by yourself section, click Download to obtain your SP metadata:


    8. Open the SP metadata file you just downloaded in a text editor and take note of the entityID and Location values,


    9. In Okta, select the Sign On tab for the RingCentral app, then click Edit:

      • Default Relay State: Enter: https://service.ringcentral.com/mobile/ssoLogin.

      • Audience Restriction: Copy the entityID value from the metadata file (step 9) into this field.

      • ASC URL: Copy the Location value from the metadata file (step 9) into this field.

      • Click Save:


    10. Go back to Single Sign-on (SSO) in RingCentral, then follow the steps below:

      • Check Enable SSO Service.

      • Manage Your Login: Select your login type.

      • Click Save:


    11. Done!


    The following SAML attributes are supported:

    SP-initiated SSO

    1. Go to https://service.ringcentral.com/login/startupSSOLogin.html.

    2. Enter your email address.
    3. Click Submit.
    4. ringcentrali.png