# Wiz 1. Service Provider ID (SP Entity ID):Can be found in the Wiz portal, via Details for your SAML Provider. 2. Service Provider Login URL (SSO URL):Can be found in the Wiz portal, via Details for your SAML Provider. 3. Service Provider Logout URL (SLO URL):Can be found in the Wiz portal, via Details for your SAML Provider. 4. IdP-Initiated Login URL:This will typically start with client\_id and not https. Please see Wiz documentation for setting up SSO. (You must be logged into Wix Portal to View Documents) [Wiz documentation can be found here.](https://docs.wiz.io/wiz-docs/docs/configure-generic-sso) **Start configuring the SAML identity provider in Wiz** 1. In the Wiz portal, navigate go to **Settings** > **Access Management** > **SSO & Login Security**, then click **Add Identity Provider**. 2. In the **New SAML Identity Provider** page, enter **Key9-Identity** as **SAML Name**. Then click **Continue**. The values required for Key9 (IdP) are generated. From the **Details for your SAML Provider** screen Copy and paste the following URLs into Key9 **Setup Items** 1. **Service Provider ID (SP Entity ID)** 2. **Service Provider Login URL (SSO URL)** 3. **Service Provider Logout URL (SLO URL)** 4. **Enable IdP-initiated logins** and Copy **IdP-Initiated Login URL** Click the **Create Application** button in Key9. After you have created your Key9 application, click the **SSO** tab in the side navigation. **Back in the Wiz portal:** 1. Leave the **Enable Authentication Request Signing** disabled. 2. Leave the **Encrypt SAML Attributes** disabled. Return to the open tab with Wiz. You should be on the **New SAML Identity Provider** > **SSO Providers Details** page. Enter the following values from Key9 into these Wiz fields: 1. Copy the Key9 **SSO** url to the **Identity provider Single Sign-On URL** field. 2. Copy the Key9 **SLO** url to the **Identity provider Single Log-Out URL** field. 3. Copy the Key9 **Entity ID** url to the **Identity Provider Issuer URL or ID** field. 4. Copy the Key9 **X.509 Certificate** to the **Public Certificate** field. (To view and copy the x509 certificate in Key9, select **View Certificate Details** from the **Certificate Options** dropdown menu, then click the copy icon.) **Click Continue.** Refer to Wix documentation for configuring group mappings. (You must be logged into Wix Portal to View Documents) [Configure group mapping in Wiz](https://docs.wiz.io/wiz-docs/docs/configure-generic-sso#configure-group-mapping-in-wiz) \------------------- By default, applications are not active upon creation. Active applications are immediately available to assign groups. Applications should only be activated when you have configured the Service Provider (SP). --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.k9.io/key9-identity/web/marketplace/wiz.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.