# Oracle Identity Cloud Service ## Configuring the Identity Provider Oracle Identity Cloud Service is integrated as a SAML Identity Provider. For a detailed explanation of the SAML options on Rocket.Chat, and check the [SAML Documentation](https://funke-olasupo.gitbook.io/user-guide/6.5/use-rocket.chat/workspace-administration/settings/saml). ## Step by Step configuration of Oracle Identity Cloud Service ### Before you begin Before you create your IDCS application, make sure you have enabled SAML per the [SAML Documentation](https://funke-olasupo.gitbook.io/user-guide/6.5/use-rocket.chat/workspace-administration/settings/saml). You will need to have entered a *Custom Provider* and a *Custom Issuer* URL on the SAML settings page in Rocket.Chat. **Note:** Leave the *Custom Entry Point* and *IDP SLO Redirect URL* values as the default values for now. We will obtain these URLs below, but you must save the SAML settings with your *Custom Issuer* URL so you can visit this URL and obtain values that are necessary when creating the IDCS application below. ### Adding a new Application On your Oracle Cloud Applications Dashboard, find a button to add a new application. It should open the following pop-up: ![](https://content.gitbook.com/content/bt8UjMwvSvhZqV13FzmJ/blobs/p5wXXDpM3JbaICUt2JNl/AddApplication%20\(1\).png) Select **SAML Application** to open the configuration wizard. ### App Details ![](https://content.gitbook.com/content/bt8UjMwvSvhZqV13FzmJ/blobs/SrQPzuxYDg6DBdles5zd/AppDetails.png) The only information needed on this page is the application name and URL. The URL you need to use here is the same one that is set on the *Custom Issuer* SAML configuration field on the Rocket.Chat settings. ### SSO Configuration ![](https://content.gitbook.com/content/bt8UjMwvSvhZqV13FzmJ/blobs/RpPxdNf3E3gRQGXfWXGo/SSOConfiguration.png) To get the values for those new settings, you need to access the same *Custom Issuer* URL that you used on the previous page. It should show an XML file similar to the one below: ![](https://content.gitbook.com/content/bt8UjMwvSvhZqV13FzmJ/blobs/MgJmiIbN9Cu5ByWzUrYm/SampleXMLConfiguration%20\(1\).png) On the **AssertionConsumerService** tag, you need to copy the value of the *Location* attribute. Then paste this value on the *Assertion Consumer URL* field on the Oracle Settings. On the **SingleLogoutService** tag, you need to copy the value of the *Location* attribute, then paste it in the *Single Logout URL* param of the Advanced Settings. On the same **SingleLogoutService** tag, you need to copy the value of the *ResponseLocation* attribute, then paste it in the *Logout Response URL* param of the Advanced Settings. Finally, the *Entity Id* param receives the URL of the XML file itself (the same URL you used as the application URL). Before clicking on **Finish**, click the **Download Identity Provider Metadata** button to download another XML file. ### Rocket.Chat Settings ![](https://content.gitbook.com/content/bt8UjMwvSvhZqV13FzmJ/blobs/B8zJCST1gScLDyb0LCEM/RocketChatSettings.png) There are two Rocket.Chat settings that need to be copied from the IDP Metadata you just downloaded: *Custom Entry Point* and *IDP SLO Redirect URL*. For the first one, locate the tag **md:SingleSignOnService** and copy the value of the *Location* attribute (ends with `/idp/sso`). For the second param, locate the tag **md:SingleLogoutService** and copy the value of the *Location* attribute (ends with `/idp/slo`). There may be multiple occurrences of those tags in the XML file, so make sure that the copied URLs end with `/idp/sso` and `/idp/slo` and not `/sp/sso` and `/sp/slo`. ### Testing Everything should be properly configured now. You can now add users to your SAML Integration app on the Oracle Dashboard and then test the login on your Rocket.Chat instance.