Skip to main content

SSO

You can also configure your Chaos Genius to use your SSO provider for logging in.

Go to the settings page and select your Identity Provider under the SSO Configuration tab. Select IdP in CG

Now configure your identity provider using the steps outlined below and then update Chaos Genius with the files you receive. Configure SSO in CG

You can also completely disable password based logins optionally.

PingIdentity

First we need to add Chaos Genius as an application in PingIdentity.

  1. Go to Connections -> Applications -> Add
  2. You can set the application name as Chaos Genius or change it according to your requirements.
  3. In application type select SAML Application. Add Application in PingIdentity
  4. Click Configure.
  5. Select Manually Enter
  6. In the ACS URLs enter: https://temp-cloud-monitoring-user-pool.auth.us-west-2.amazoncognito.com/saml2/idpresponse
  7. In the Entity ID field enter: urn:amazon:cognito:sp:us-west-2_qloEmwm69
  8. Click Save. Add App Configuration in PingIdentity
  9. Click Attributes button in blue near the top. Overview of Added Application in PingIdentity
  10. Add all attributes as shown in the below image. Attribute Mapping in PingIdentity
  11. Click Save.
  12. Go to the Configuration tab.
  13. Download Metadata and Download Signing Certificate and provide these files to Chaos Genius. Download Files from PingIdentity
  14. Finally hit the switch on the top right to enable the application.
  15. Optionally, you can also attach Policies and restrict Access in the respective tabs.
  16. Upload the files you downloaded into the SSO Configuration section of Chaos Genius settings and hit enable SSO.

Once the system finishes updating, you should be able to log into your account via SSO.