Rate this feature
Included in the June 2021 releaseAdministrators or account owners can require single sign-on (SSO) verification for specific users. Account owners will always have the option to sign in via email and password even if SSO is enabled for the account. Before enabling SSO for your integrator.io account, set up an account with an SSO service provider. integrator.io supports any SSO provider that offers Open ID Connect (OIDC) authentication such as the following:
Note: You must disable SSO when sharing access credentials with our Support team to resolve an issue.
Contents
Configure SSO settings
Use the following steps to configure single sign-on (SSO) settings for your integrator.io account:
- Log in to integrator.io using account owner credentials.
- Click the avatar icon in the upper right corner and select My Profile.
- Open the Security tab.
- Click the toggle button to Enable OIDC-based SSO.
- Complete the following fields:
- Issuer URL (required): Enter the domain-specific URL issued by your SSO provider. For example:
http://login.microsoftonline.com/<yourTenantId>/v2.0 - Client ID (required): Enter the unique ID issued by your SSO provider.
- Client Secret (required): Enter the secret key issued by your SSO provider.
- Organization ID (required): Enter a unique organization ID that integrator.io will use to generate a unique SSO URL for your account. This field accepts only alphanumeric characters and must be 3-20 characters in length.
- Issuer URL (required): Enter the domain-specific URL issued by your SSO provider. For example:
- Click Save.
The following URLs are automatically generated after you click Save.
- Application login URL: After you have enabled SSO for your integrator.io account, you can instruct users to navigate to the Application login URL to sign in to their account with SSO. You will also use this URL when configuring the integrator.io app with your SSO provider.
- Redirect URL: Your SSO provider will send the authorization code tokens to this unique URL. Use this URL when configuring the integrator.io app with your SSO provider.
Require SSO login for specific users
- Log in to integrator.io using account owner credentials.
- Click the avatar icon in the upper right corner of the screen and select My Profile.
- Open the Users tab.
- Require account SSO?: Toggle to require specific users to sign in with SSO.
- Account SSO Linked? (read only): This column indicates whether the user has successfully logged in to integrator.io using SSO. If yes, the user has successfully signed in to the account using the account's SSO settings, and the user must sign in to integrator.io using SSO afterwards. Otherwise, the field displays no.
Users who are required to use SSO authentication can access the integrator.io app you created from within the SSO provider's website or navigate to the Application login URL.
When inviting a new user, you can check the Require account single sign-on (SSO) to require SSO authentication for the new user.
How to sign in using SSO
Once your account has been SSO enabled, you can sign in using either of the following ways:
- Access integrator.io using your OIDC service provider app.
- Access application login URL by navigating to
https://integrator.io/sso/:orgidwith your web browser.
Comments
2 comments
Is SAML supported?
Hello Amir Gardezi,
I'm the product manager for the SSO feature at Celigo. Thanks for reaching out and expressing your interest in the new feature.
Celigo supports only the Open ID Connect (OIDC) standard. Any SSO provider such as Okta, OneLogin, Azure AD, or GSuite SSO that offers OIDC authentication can be integrated with integrator․io.
Currently, I'm not planning to add SAML. I’ve registered your vote for SAML, and I’m going to cross-post this request at the Integrator․io enhancement requests community, where I encourage others with this business requirement to add their voice or upvote SAML support.
Best Regards!
Please sign in to leave a comment.