Customers on a Pro, Business, and Enterprise plan can activate Single Sign-On (SSO) via SAML 2.0 for their email domain(s).
With SAML 2.0 activated for your email domain, our SSO operates as an enforced login system. This means your administrators will no longer be able to sign in using a username and password.
To activate Single Sign-On for your Pro, Business, or Enterprise account, you’ll need the following information:
- Email Domain(s): Specify which email domain(s) you want us to activate SSO for.
- IT Contact Details: Provide the name, email, and phone number of your IT contact.
- Authorization: Confirm that you are authorized to enable, disable, and manage Single Sign-On on behalf of all users with the domain(s) listed on this form.
- IDP API URL: Provide the API URL for your Identity Provider (IDP). For instance: https://mocksaml.com/api/saml/sso
- Certificate: Submit the certificate used to verify the server's identity.
Once ready, submit the information using this form:
Upon receiving these details, we will supply you with a callback URL and issuer details for your organization. If you have any questions during this process, don't hesitate to reach out.
Please note that our SSO service does not support:
- LDAP (Lightweight Directory Access Protocol)
- OIDC (OpenID Connect)
- Signup via Google/Slack/Linkedin (Social Auth). Exception: This is possible if your Google workspace is configured as an SSO IdP (Identity Provider).