SAML Integration for Vodia PBX

Vodia PBX allows for SAML integration, which is widely used among enterprise organizations and offers a secure means of accessing the PBX. For this example, we will use Auth0 as the identity provider.

Auth0 Configuration

On Auth0, you will need to:

Create an app

Set the callback URL in the app to: https://tenant.com/rest/system/samllogin

Enable SAML addon

Example SAML Settings

You can use these settings as an example:

{
  "mappings": {
    "name": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/userName",
    "email": [
      "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress",
      "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier"
    ]
  },
  "nameIdentifierProbes": [
    "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
  ]
}

tip

The admin for the IDP must have set the nameid to allow login, either by email or the extension@tenant.

Required Information

Make sure you take note of:

The identity provider login URL
Download the certificate

Vodia PBX Configuration

On your Vodia PBX:

Go to Tenant admin settings
Add the SAML settings
You need the identity provider login URL and certificate as a string (do not include -----BEGIN ... and ... END ----- text)

Example Configuration

{
  "saml_idp_address": "https://dev-v6nqfm0exebgxy0e.au.auth0.com/samlp/BkjDtJIJPpPLxsoY5dZMc0re2H6Fi9xC",
  "saml_idp_cert": "MIIDHTCCAgW........KtsVJ5n"
}

Result

You will then see a SAML login option when you navigate to the tenant web page.

SAML Integration for Vodia PBX

Auth0 Configuration​

Example SAML Settings​

Required Information​

Vodia PBX Configuration​

Example Configuration​

Result​