Recent Searches

No recent searches

    Popular Articles

      Articles
      View all
        Topics
        View all
          Tickets
          View all
            no results

            Sorry! nothing found for

            Single Sign-On (SSO)

            What is SSO ?

            Single Sign-On (SSO) allows to connect through an Identity Provider (IdP) to a service.

            It is a secure solution to connect to the CybelAngel Platform using a single set of credentials managed at your company's level.

             

            To communicate between the web-service and the Identity Provider, a federation protocol shall be used. CybelAngel currently supports the OpenID Connect (OIDC) protocol and SAML protocol.

             

            Impacts of activating the SSO

            At an admin level

            Current users, roles and permissions will remain unchanged.

            Invitation of new users is still necessary and unchanged.

            At a user level

            Users will be concerned by the authentication with your IdP if the domain in their email has been set to be in the domain list.

             

            All those users will:

            - be redirected to your IdP for authentication;

            - have the platform password connection disabled;

            - have MFA (on CybelAngel end) disabled.

             

            New users won't have to create a password on the CybelAngel platform and will receive a welcome email with a link to connect to the CybelAngel platform.

             

            Activate SSO

            Activating the SSO for your organization is easy.

            First, fill in the form to request the activation of SSO.

            This step will start your journey toward an active SSO, it'll:

            - inform your Customer Success Manager about your request so he can help you,

            - create a ticket for our support team that'll be in charge of activating the SSO,

             

            CybelAngel currently supports two standards: OpenID Connect (OIDC) and SAML. Based on the type of SSO connection you're willing to activate, we need some information from you. Please check the following articles:

            - If you want to activate OpenID Connect (OIDC), please refer to our OIDC documentation
            - If you want to activate SAML, please refer to our SAML documentation


            When SSO is active

            After SSO has been properly set up, you will be asked to enter your email address to login.

            Then you will be redirected to your IdP to properly login using your corporate method.

            Please note that:

            • We do not handle LDAP, therefore all the users must be invited first by an Admin into our platform
            • Your IT administrators should grant you the relevant permissions on your IdP to access our platform

            Was this article helpful?

            That’s Great!

            Thank you for your feedback

            Sorry! We couldn't be helpful

            Thank you for your feedback

            Let us know how can we improve this article!

            Select at least one of the reasons
            CAPTCHA verification is required.

            Feedback sent

            We appreciate your effort and will try to fix the article

            Preview
            0 of 0