Configuring SAML for Heroku
REQUIRED ACCOUNT/PERMISSION LEVEL
Bitium: All account levels; must be admin to set up
Heroku: Enterprise account; Must be admin to set up
Go to “Manage Apps.”
Select “Heroku” from the list of installed apps.
Click the “Single Sign-On” tab.
Click the dropdown menu and select “SAML authentication.”
Enter the name of your organization as it appears in Heroku, into the Heroku Organization field in Bitium.
Download the Metadata XML from Bitium.
Click “Save Changes” in Bitium.
Navigate to “Organization” and then “Settings.”
In the Single Sign-on (SSO) section of Settings, click “Upload Metadata.” Choose the metadata that was downloaded from Bitium.
After the metadata is uploaded, Heroku should say Single Sign-on is “enabled.”
Note: Heroku supports JIT provisioning.