Enable single sign-on (SSO)

Many companies choose to use single sign-on (SSO) to help users log in to Symphony quickly and securely. Whilst administrators can’t use SSO to log in to the Admin Portal, it removes the need to re-authenticate a user once they are on your corporate network.

Note: Before you configure SSO, you must obtain the IdP Entity ID, IdP SSO Endpoint and IdP Signing Certificate.

To enable SSO:

  1. In Symphony, select the Settings icon.

Settings_Icon.png

  1. Select Admin Portal. This option is only available if you're a designated Administrator with Admin Portal access.
  1. Select Begin Session.

Note: Session Objective and Comments are optional fields and are not required to access the Admin Portal.

  1. Navigate to Configure SSO under Company Settings and select Enable SSO.

  1. Enter your SSO configuration by completing the fields corresponding to your corporate directory federation service. Then import the IdP Signing Certificate and select Next.

  1. Test your configuration by seeing if Symphony can access the URL provided. If Symphony is able to access the URL, you will be notified by a pop-up window.
    • Ensure pop-ups are enabled in your browser.
  1. Enable your SSO by selecting Turn on SSO and confirming confirmation button. You will see a confirmation message if you enabled SSO successfully.
    • It may take up to two minutes for SSO to activate after it is enabled.
    • When creating accounts, remember that your end users’ company usernames should match their corporate SSO credentials. Usernames must be unique across all active and inactive user accounts in the company.

Refer to the latest version of the Symphony Admin Guide for further information on the Admin Portal.