You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: docs/enterprise/tech-overview/security/sso.md
+14-4Lines changed: 14 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -8,7 +8,7 @@ description: "Learn about the prerequisites for setting up enterprise SSO"
8
8
If you wish to use enterprise SSO but don't already have it enabled, please speak with your Account Manager first.
9
9
:::
10
10
11
-
Before performing any setup on your side, please fill out the questionaire below and share the answers with your Account Manager.
11
+
Before performing any setup on your side, please fill out the questionnaire below and share the answers with your Account Manager.
12
12
13
13
### Customer questionnaire
14
14
@@ -70,11 +70,21 @@ Note: to help maintain best in class security we support SP-Initiated and not Id
70
70
on [IdP-Initiated Risks and considerations](https://auth0.com/docs/authenticate/protocols/saml/saml-sso-integrations/identity-provider-initiated-single-sign-on#risks-and-considerations)
71
71
for more information on this.
72
72
73
-
### Add a new user
73
+
### User management
74
74
75
-
Instead of using our Users section in the Codat Portal, you need to add a new user in your IdP to one of the groups you set up above. Once this is done, they can use the login URL provided and will be added to your Codat instance.
75
+
While using SSO, you will no longer use the `Users` page within the Codat Portal to manage user. Instead this will be done within your identity provider.
76
76
77
-
Similarly, to remove a user, remove them from the group in your IdP.
77
+
#### Add a new user
78
+
79
+
The adding of a user is done through adding them to one (or many) of the groups supplied as part of setup. Note - users will assume the highest level of privilege when added to multiple groups.
80
+
81
+
After a user has been added to the relevant group within your identity provider, they can use the login URL provided and will be added to your Codat instance.
82
+
83
+
#### Removing a user
84
+
85
+
Preventing a user from accessing the Codat Portal can be done through:
86
+
- Removal from all specified access groups in your identity provider.
87
+
- Prevention of authentication via your identity provider.
0 commit comments