Generic SAML SSO

PerimeterX supports logging in to the PerimeterX Portal with Generic SAML SSO as the authentication provider.


Administrative access in a PerimeterX account is required before configuring Generic SAML SSO

Configure PerimeterX SSO

  1. Login to your PerimeterX console with Admin permissions.
  2. Navigate to Platform Settings-> Accounts
  1. Click Edit
  2. In the Edit Account dialog:

a. Check Enable Single Sign-On (SSO)
b. Select Generic SAML and enter the following details:

Field name


SAML Endpoint

URL endpoint where the SAML assertion is sent.


The IdP unique identifier. The SP validates that the SAML assertions it receives are issued from the correct IdP.

X.509 Certificate

A certificate provided by the IdP. Used to verify the public key as passed by the IdP in the metadata of the SAML assertion

  1. Make sure to Save Changes

Attribute Mapping

The PerimeterX application expects the SAML assertions in a specific format, requiring you to add custom attribute mappings to your SAML attributes configuration

Application Attribute



User's email address


User's first name


User's last name

Inviting Users

When inviting users to login to the PerimeterX Portal for the first time, refer to the PerimeterX Managing Users Guide for full instructions.

If a user was invited prior to enabling Generic SAML SSO:

  1. In the PerimeterX Portal, delete the existing users’ accounts from Admin > Users.
  2. Re-invite the deleted users as new users according to the instruction in the PerimeterX Managing Users Guide.



To enable the administrator user to login with Okta SSO, delete the user and re-invite (within the same session) by going to Platform Settings-> Users and selecting Invite User.


For more information see the SSO Integration FAQ