Bugcrowd offers a Security Assertion Markup Language (SAML) based Single Sign-On (SSO) integration with Centrify to help you create an easy and centralized way to log in to Crowdcontrol. This section provides the steps to configure Centrify.

Specific Role Required to Configure SSO: To configure SSO for your program, you must be an Organization Owner. Organization Owners can log in using Username and Password.

Adding Bugcrowd to Your Centrify Admin Portal

  1. Log in to your Centrify Admin Portal.

  2. Click Apps, and then click Add Web Apps.


    The Add Web Apps page is displayed.

  3. Click Custom.


  4. Click Add next to the SAML application.

  5. When the Add Web App page appears, click Yes to add the application.

  6. Close the Application Catalog. The Settings page for the application that you have added is displayed.

    You must specify the information for this screen from your Bugcrowd account.

  7. In Assertion Consumer Service URL, paste the Single Sign on URL from your Bugcrowd account.

  8. Navigate to Advanced Settings page and specify the following:

    • setAudience: Past the Single Sign on URL from your Bugcrowd account including the quotes.
    • Name ID Format: Select EmailAddress.
    • Application Username: Select Email.
  9. Save your changes.

Mapping Centrify to Crowdcontrol

  1. In Centrify, navigate to the Centrify SAML Application Settings screen, and make a note of the following information:

    • Centrify Issuer
    • Centrify Identity Provider Sign-in URL
    • Security Certificate (download the certificate)
  2. Navigate to the Single Sign-On screen in Crowdcontrol and scroll to the SAML Settings section.

  3. Specify the following information from Centrify:

    • IdP Entity ID: Paste the Centrify Issuer information from Centrify.
    • IdP SSO Target URL: Paste the Centrify Identity Provider Sign-in URL information from Centrify.
    • IdP Certificate: Paste the complete contents of the security certificate file from Centrify.
  4. Click Save authentication settings to save the information.

    Domain verification is required for SSO to function properly. For more information, see verifying domain.

Account Management
Security Program Management
Engagement Management
Submission Management
Integration Management