How to configure JumpCloud + SAML for your Thinfinity RDP Server

Thinfinity Remote Desktop

This is a quick tutorial to integrate and configure JumpCloud with SAML for your Thinfinity Remote Desktop Server deployment.
1) Navigate to the JumpCloud console -> “Applications” -> Click on the Plus icon:
JumpCloud & SAML
2) Click on “Configure” over the SAML option:
JumpCloud & SAML
3) Configure the three following fields with the appropiate information:
JumpCloud & SAML

    • IDP Entity ID : https://sso.jumpcloud.com/saml2/saml2

 

    • SP Entity ID : https://MyThinfinityIP:[Port]/

 

    ACS URL : https://MyThinfinityIP:[Port]/SAMLAssertionConsumerService

4) Click on “Activate” -> “Continue” -> “Save”.
5) Reopen the application, and download the Certificate generated on JumpCloud’s end:
JumpCloud & SAML
6) Open the Thinfinity Remote Desktop Server Manager. Then click on: “Authentication” tab -> Add -> SAML
JumpCloud & SAML
7) Configure the Authentication Method with the following information:
JumpCloud & SAML
IMPORTANT INFORMATION:
“Service Certificate File” and “Service Certificate Password” : You need a valid certificate in order to sign the authentication.
“Partner Certificate File”: This is the certificate you downloaded from JumpCloud in step 5.
After everything is configured, click “Ok”.
8) Click on the “Mappings” tab, and press the first “Add”:
JumpCloud & SAML
The Authentication ID Mask must match the user sent from JumpCloud, for example:
JumpCloud & SAML
Click “Ok”. You should see now that the user in the “Authentication ID Mask” list. Below you’ll find different examples of how you can integrate it:
JumpCloud & SAML
8) Click on the user you added, and press on the second “Add”. The “Select Users or Group” window will be displayed.
In here, you will map the “External” user ( the JumpCloud credentials ) to an “Internal” user ( Windows user ) , so that Thinfinity can specify which Access Profile will be displayed to each “external” user. ( “Permissions” tab in the Access Profile Editor ):
JumpCloud & SAML
9) After you click “Ok” , you should see something like this:
JumpCloud & SAML
Click “Apply”.
10) Navigate to the Thinfinity URL, and you should see the new authentication method:
JumpCloud & SAML
If JumpCloud SAML is the only authentication method, then Thinfinity will redirect you directly to the JumpCloud login page:
JumpCloud & SAML
Have any questions? Want to know more about access profiles for cloud computing? Contact us at [email protected] or leave a message on this same post.

Leave a comment

Cookie Preferences
Privacy and Cookie Policies
Cybele Software implements specific policies to enhance your browsing experience while respecting your privacy. When you visit Cybele Software's website, the site uses cookies to personalize your experience. These small files remember your preferences and the details of your repeated visits, aligning closely with Cybele's Privacy Policy.

You have complete control over the cookies used during your visit:
- Accepting All Cookies: You can agree to the use of all cookies by clicking “Accept All.” This provides a smoother, more integrated experience.
- Customizing Cookie Settings: If you prefer to manage your preferences, you can click on "Cookie Settings." This allows you to give controlled consent by selecting which types of cookies you agree to activate.
- Opting Out: You also have the option to opt-out entirely from non-essential cookies. It's important to note that choosing this option might impact your experience on the website, potentially limiting certain functionalities and features.
These features ensure that you can tailor your browsing according to your personal preferences and privacy concerns.