Enable can integrate with a variety of SAML identity providers to support Single-Sign On (SSO) with Enable, to simplify and secure user authentication.
If you are interested in using SSO but have not yet discussed your requirements with Enable, please reach out to the reach out to the Enable Support team.
This article guides you through the steps required for SSO setup, if your identity provider is not listed within the Configuring SSO section.
This article will guide you through:
Looking for something else?
-
Looking to understand which users are logging in with SSO? Learn how to track SSO via the user activity log here.
-
Alternatively, see our Help Center for more on SSO.
SSO information provided by Enable
To set up SSO with Enable, the following information is required for configuration on your end. Enable will provide the below SSO credentials.
SSO Credentials |
Description |
Entity ID |
The unique identifier for the SAML application in Enable. This is used to identify the application during login. |
Sign-on URL |
The SAML SSO URL where users are re-directed to start the login process. This is the same link as the SSO login URL for your users. |
ACS URL |
The URL where SAML assertions (login information) are sent after users have successfully logged in. Enable sends the SAML response to this URL to complete the login process. This may be referred to as Sign-On URL, Recipient URL, and/or Destination URL within your identity provider. |
Logout URL |
The URL where users are redirected after logging out. This ensures that users are signed out from Enable and any other applications integrated with your identity provider. |
Enable public service certificate |
The certificate used to securely send and verify login information. This ensures that SSO assertions are secure and can be verified by the application. |
Tip: If preferred, to simplify the configuration process, you can also request the Enable metadata XML file from Enable that includes all of the above credentials.
SSO steps you need to follow
You will need to provide the following information to the Enable Support team to allow SSO to be configured for your organization in Enable:
-
Identity provider EntityID.
-
Identity provider Single Sign-On URL.
-
Identity provider Public Certificate.
Once you have received confirmation from the Enable team, the above details outlined in the table should be enough to configure Enable as an application or relying party in your SSO Identity Provider. Exact steps to complete the configuration may vary.
In your identity provider configuration, ensure sure that the Name ID claim type is populated with the user's email address used for their Enable login. It is important that the email address matches a user's email address in Enable so that SSO can identify the user from the identity claim.
What’s next?
Ready to verify that SSO is working? Learn more about testing and troubleshooting SSO here.