Docusign

Capabilities overview

DocuSign helps small and medium-sized businesses collect information, automate data workflows, and sign on various devices.

Docusign pricing page

Supported capability Required plan Details
Passwordless SSO Advanced solutions High SSO tax
Automated provisioning Advanced solutions API (create, remove, update accounts)
Password manager Any Auto-fill / Auto-capture

Prerequisites

Before you configure SAML SSO in Docusign make sure you have your domain verified. Follow the link below to make sure your domain is verified.

Setting Up SSO: Domains - DocuSign Admin for Organization Management | DocuSign Support Center
This section covers the first step of the process to set up and enable SSO for your DocuSign Organization and provides some supporting reference information about reserving domains.

In order to integrate idemeum with Docusign you will need to obtain SAML metadata parameters for your idemeum tenant.

Specifically you will need:

  • Identity Provider Entity ID
  • Identity Provider SSO URL
  • Identity Provider Certificate (download file)

Instructions for how to obtain these SAML metadata parameters are below.

How to obtain SAML metadata for idemeum
SAML metadata is the data that describes the information needed to communicate between your SaaS application and idemeum in order to enable Single Sign-On. Based on SAML terminology SaaS application is called Service Provider (SP) and idemeum will be Identity Provider (IDP). Typically you will be a…

Passwordless Single Sign-On (SAML)

Configure SSO in Docusign

  • Access your Docusign account at admin.docusign.com and navigate to Settings
  • Then navigate to your organization settings
  • Click Add identity provider
  • Enter identity provider name and click Next
Now you will be using SAML metadata parameters obtained from prerequisites section
  • Enter Identity Provider Entity ID into Identity Provider Issuer
  • Enter Identity Provider SSO URL into Identity Provider Login URL
  • Create claims mappings as shown below (emailaddress -> emailaddress, givenname -> givenname, surname -> surname)
  • Click Next
  • Click Add Identity Provider
  • Once you save the configuration you will need to add idemeum X509 public certificate. Click Actions -> Add certificate
  • Upload certificate that you downloaded in prerequisites section
  • Click on Configuration and copy Service Provider Metadata URL as you will need it for idemeum configuration
  • You can exit identity provider configuration

Configure SSO in idemeum

  • Navigate to https://[your domain].idemeum.com/adminportal
  • Click Applications in the left menu
  • Search for Docusign application and click Add App
  • Click SAML at the top navigation menu
Now you will enter Service Provider Metadata URL that you obtained from Docusign
  • Enter Service Provider Metadata URL and click Load config
  • Click Save in the new screen

Automated provisioning

  • Navigate to Docusign Provisioning configuration in your idemeum admin portal
  • Click Authorize and enter your credentials to authorize idemeum to access Docusign APIs
  • Now from the dropdown choose account where you woudl want to povision users
  • Click Save

Application entitlements

Before users can access applications you need to make sure you entitle applications to them. In idemeum admin portal navigate to Entitlements section to assign applications to your employees.


SAML SSO login flows

Docusign supports IDP Initiated Flow for SSO.

IDP Initiated flow

With this flow users first navigate to idemeum user catalog and then click on Docusign icon to launch application.