Single sign-on (SSO) allows users to access many service providers using a single username and password by relying on a single identity provider.
When single sign-on is enabled, users of an organization can sign in to Talon.One directly with their identity provider user account.
The steps to set up single sign-on depend on the identity provider. To learn how to set up single sign-on with different providers, see these tutorials.
Enabling single sign-on
After you have set up single sign-on on both the identity provider side and the Talon.One side, you can enable it for all users of your organization.
To enable single sign-on, in Talon.One, in Account > Organization > Single Sign-On, click Enable Single Sign-On. Single sign-on is enabled immediately.
When single sign-on is enabled but not enforced, users can continue to sign in to Talon.One using their email and password. However, after they sign in once using single sign-on, they cannot use their email and password to sign in anymore.
Enforcing single sign-on
Enforcing single sign-on is a permanent action. When single sign-on is enforced, users of your organization can sign in to Talon.One only with the domains specified in the setup.
Enforce single sign-on only when you are sure that the setup is correct and signing in works as expected.
After you have set up single sign-on on both the identity provider side and the Talon.One side, you can enforce it for all users of your organization.
To enforce single sign-on:
- In Talon.One, in Account > Organization > Single Sign-On, select the Enforce single sign-on checkbox.
- Click Enable Single Sign-On.
- In the pop-up that appears, click Enable Single Sign-On.
You can also enforce single sign-on later while editing the setup.
Editing the single sign-on setup
Always ensure the setup information in Talon.One matches the information from your identity provider.
You can edit any information in your single sign-on setup, for example, the connection name or sign-on URL.
To edit the single sign-on setup:
- In Account > Organization > Single Sign-On, click Edit Single Sign-On.
- Edit the setup as needed.
- (Optional) If single sign-on is not enforced, select the Enforce single-sign on checkbox to enforce it.
- Click Save.
The changes to the single sign-on setup are applied immediately.