Single Sign-On
What is Single Sign-On?
Single Sign-On (SSO) is a user authentication service that allows users to access multiple applications using one set of login credentials.
At Fellow Digitals, we support SSO. This means you can work from a single source directory (for example Active Directory) and do not need to maintain separate user databases. This not only saves time and costs, but also improves security.
Because usernames and passwords are a major target for cybercriminals, reducing the number of separate login credentials contributes to better organizational security.
What can SSO do?
- Users do not need to remember an additional username and password.
- It is no longer necessary to manually invite users.
- Users do not need to manually activate their accounts; the activation process runs automatically.
- After implementation, integrations are faster and easier.
What are the technical requirements?
- You have an Identity Provider that is compatible with the SAML, OpenID, or JWT standard.
- The online Identity Provider is activated and available for use.
Connecting SSO to your new intranet
Setting up an SSO connection with your new intranet requires collaboration between your IT department and a technical specialist from Fellow Digitals.
A connection is established between your Identity Provider (IdP) and our system (Service Provider – SP).
- The IdP manages user information and authentication.
- The SP (our platform) uses the identity approved by the IdP.
To configure the SSO connection, you need the Client Redirect URI and Custom Redirect URI of the platform. These can be found (after activation) in the Setup environment. In this environment, the Discovery Document URL, Client ID, and Client Secret must then be filled in.
Extension: User Provisioning
If, in addition to SSO, there is a wish for fully automated user management,such as automatically deactivating users who leave the organization, User Provisioning is also available.