Single sign-on
Single sign-on (SSO) is an identification system that allows employees to use one set of login credentials (username and password) to access multiple applications.
When users sign in with SSO, they don't need the Sage People or Salesforce login page to access Sage People. They can use the same credentials they use for other business applications in their organization.
Supported SSO applications
Sage People support for single sign-on services includes the following applications:
-
Microsoft Active Directory Federation Services (ADFS)
-
Microsoft Entra ID
-
OneLogin
-
Okta
-
Google G Suite
How the SSO works
Single sign-on forwards any login attempts to the chosen authentication service. After the user has authenticated, the system sends an assertion to Sage People. The assertion contains the configuration held within Sage People to match. The assertion includes the chosen attribute to match with either Username or Federation Id in Sage People. You can select the attribute in the Sage People SSO configuration. Using Federation Id is more common, as usernames must be unique across the whole of Salesforce.
If both single sign-on and logging in with a username and password are required—typically, SSO for active employees and logging in with a username and password on the org's login page for pre boarders—then the Salesforce org domain must be my.salesforce.com
SSO provides the following benefits:
| Who | Benefits |
|---|---|
|
For the organization |
|
|
For Sage People users |
Users don’t have to remember multiple logins. When they’re logged in to their employer’s SSO system, they can access Sage People without another login. |