Skip to main content
All CollectionsSettings and AccountAuthentication
Configuring Single Sign-On Authentication (SSO)
Configuring Single Sign-On Authentication (SSO)

Setup SSO authentication with an option to enforce it

Updated over a week ago

Supported Identity Providers for SSO


Configuring SSO authentication

  1. Go to the Vulcan Platform > Settings > Authentication

  2. Follow the instructions on the SSO configuration page. Also available here:

    1. Setup the SSO configuration on the identity provider platform and generate the metadata XML file. Click on the relevant identity provider below for instructions:

    2. Check the "Enable SAML authentication for this environment".

    3. Upload the generated XML file to the Vulcan Platform.

    4. Check the "Enforce SSO" box to enforce SSO as the only login option for all users (optional).

      • If enabled, users can log in to the Vulcan Platform only by SSO. The username and password option becomes disabled.

      • If disabled (left unchecked), users can log in to the Vulcan Platform using either SSO or username and password.

    5. Click Save.


Disabling SSO

To disable SSO authentication:

  1. Go to Settings > Authentication.

  2. Uncheck the "Enable SAML Authentication for this environment" option.

  3. Click Save.


FAQ

What does the login page look like with the "Enforce SSO" option enabled?

The user can log in only using an identity provider (SSO)

What does the login page look like without SSO enforcement?

The user can log in using either credentials or an identity provider (SSO).

Can the application be configured for SP-initiated authentication?

Yes.

Can the application be configured so that it's only accessible via SSO?

Yes. The Vulcan Platform also provides the option to Enforce SSO only. The configuration is available on the SSO setting page.

Does the application support SLO (Single Log Out)?

Not at the moment.

Can the log-out link in the application be configured?

No.

Aside from the user's unique identifier, what is the needed user information to log into the application?

The required info is email, and user name (which can be same as email).

Is it possible to bypass SSO for some or all users?

Yes, for all users by adding the parameter ?password=true to the URL.

Did this answer your question?