How do I set up SSO with SAML for Prerender.io?
Connect your identity provider to Prerender.io so your team can sign in with single sign-on.
TL;DR
Prerender.io supports SAML-based single sign-on (SSO) for Enterprise tier accounts. You provide your User ID, custom domain preferences, and IdP sign-on URL to the Prerender.io support team, and they configure a dedicated Keycloak realm for your organization. The process requires coordination between your identity provider (IdP) and Prerender.io.
Step 1: Confirm your account is on an Enterprise tier plan.
SSO is available on custom plans (Enterprise tier) or equivalent packages that support multi-user accounts. If you are not sure which plan you are on, check your Prerender.io billing settings or contact support@prerender.io.
⚠️ SSO cannot be enabled on standard plans. You need an Enterprise tier account before proceeding.
Step 2: Gather the information Prerender.io needs from you.
Before contacting support, prepare the following three items.
Your Prerender.io User ID. Prerender.io links all SSO users to one existing account. Locate the User ID for this account in your Prerender.io dashboard.
Your preferred custom domain and auth URL. Prerender.io creates a dedicated Keycloak realm for your organization. You choose the subdomain for both your site and authentication endpoints. For example:
- Site URL:
yourcompany.app.prerender.io - Auth URL:
yourcompany.auth.prerender.io
Your IdP sign-on URL. This is the URL on your identity provider that Prerender.io redirects users to when they sign in, also called the SSO service URL or single sign-on endpoint.
Step 3: contact Prerender.io support to start the setup.
Send the three items from Step 2 to support@prerender.io.. The Prerender.io team creates your dedicated Keycloak realm and sends back the configuration details you need for your identity provider.
Step 4: Configure your identity provider with the details Prerender.io provides.
Once your realm is ready, Prerender.io provides three values. Add these to your IdP's SAML configuration.
Redirect URL (ACS URL). The URL where your IdP sends SAML assertions after authenticationhttps://auth.prerender.io/auth/realms/prerender-YOURCOMPANY/broker/YOURCOMPANY-saml/endpoint
Service Provider Entity ID. The unique identifier for Prerender.io in the SAML exchange:
https://auth.prerender.io/auth/realms/prerender-YOURCOMPANY
Mapper: email. Prerender.io uses the email attribute to map users from your IdP to its internal user structure. Confirm your IdP sends the email claim in SAML assertions.
ℹ️ Replace YOURCOMPANY in the URLs above with the subdomain you chose in Step 2.
Step 5: Send your SAML configuration file to Prerender.io.
Export the full IdP metadata XML from your identity provider. This file typically includes at minimum your IdP's entity ID, SSO URL, and signing certificate. Send it to support@prerender.io so the Prerender.io team can import it into your Keycloak realm and establish the trust relationship.
Step 6: Verify SSO is working.
After both sides are configured, test the integration by signing in through your IdP. Confirm that:
- Your IdP redirects to the correct ACS URL.
- The SAML assertion is accepted and you land in your Prerender.io dashboard.
- Your user email maps correctly to your Prerender.io account.
✅ SSO is working when you can sign in through your identity provider and arrive at your Prerender.io dashboard without entering separate Prerender.io credentials.
If sign-in fails, verify that the ACS URL matches exactly in both your IdP and the values Prerender.io provided. Contact support@prerender.io if the issue persists.
Related articles
- How do I get started with Prerender.io? — set up your account and first integration.
- How do I manage billing and account settings? — review your plan, billing, and team settings.
💬 Still need help? If you have questions about SSO configuration or need help troubleshooting your SAML setup, our support team can help. → Contact us at support@prerender.io