Single sign-on
Single sign-on (SSO) is an identification system which allows employees to use one set of login credentials (username and password) to access multiple applications.
When SSO is used, users do not need to use the Sage People or Salesforce login page to access Sage People, they can use the same credentials they use for other business applications in their organization.
Supported SSO applications
Sage People support for single sign-on services includes, but is not limited to, the following applications:
-
Microsoft Active Directory Federation Services (ADFS)
-
Microsoft Azure
-
OneLogin
-
Okta
-
Google G Suite
How SSO works
Single sign-on forwards any login attempts to the chosen authentication service. After the user has authenticated, the system sends an assertion to Sage People. The assertion contains the configuration held within Sage People to match. The assertion includes the chosen attribute to match with either Username or Federation Id in Sage People. You can select the attribute in the Sage People SSO configuration. Using Federation Id is more common, as usernames must be unique across the whole of Salesforce.
If both single sign-on and logging in with a username and password are required—typically, SSO for active employees and logging in with a username and password on the org's login page for pre boarders—then the Salesforce org domain must be my.salesforce.com.
-
For an org on the cloudforce.com domain with SSO enabled, users cannot log in on the org's log in page (for example, <domain>.cloudforce.com). Users can still log in from login.salesforce.com if Prevent login from https://login.salesforce.com is unchecked in the settings for My Domain.
-
If your Sage People system is on a cloudforce.com domain, or you are using SSO in a sandbox environment, enabling Salesforce Enhanced Domains requires changes to references to your old Domain. For more information see Enhanced Domains on the Sage People Community.
SSO provides the following benefits:
Who | Benefits |
---|---|
For the organization |
|
For Sage People users |
Users do not have to remember multiple logins. When they are logged in to their employer’s SSO system, they can access Sage People without another login. |