Enable single sign-on (SSO)

Many companies choose to use single sign-on (SSO) to help users log into Symphony quickly and securely. Whilst administrators can’t use SSO to log into the Admin Portal, it removes the need to re-authenticate a user once they are on your corporate network.

Note: Before you configure SSO, you must obtain the IdP Entity ID, IdP SSO Endpoint and IdP Signing Certificate.

 

Enable SSO by following these steps:

 

1. In Symphony, select the Settings icon (Figure 1):

 

Settings_Icon.png

Figure 1 Settings

 

2. Select Admin Portal.

 

Note: This option is only available if you're a designated Administrator with Admin Portal access.

 

3. Select Begin Session.

 

Note: Session Objective and Comments are optional fields and are not required to access the Admin Portal.

4. Navigate to Configure SSO under Company Settings and select Enable SSO (Figure 2):

mceclip0.png

Figure 2 Configure Single Sign-On

 

5. Enter your SSO configuration by completing the fields corresponding to your corporate directory federation service. Then import the IdP Signing Certificate and select Next (Figure 3):

 

mceclip0.png

Figure 3 Update SSO Configuration

 

6. Once this is done, test your configuration by seeing if Symphony can access the URL provided. If Symphony is able to access the URL, you will be notified with a pop-up window.

 

Note: Ensure pop-ups are enabled in your browser.

 

7. Enable your SSO by selecting Turn on SSO and confirming confirmation button. You will see a confirmation message if you enabled SSO successfully.

 

Note: It may take up to two minutes for SSO to activate after it is enabled.

 

Note: When creating accounts, remember that your end users’ company usernames should match their corporate SSO credentials. Usernames must be unique across all active and inactive user accounts in the company.

 

Further information on SSO can be found here.