Set Up SSO
Platform: | WebMobile |
---|---|
Plan Type: | BasicEssentialPremiumEnterprise |
User Type: | RequesterFull UserAdministrator |
This article covers the major steps you need to follow to set up single sign-on (SSO) for MaintainX. Some steps in this article link to more detailed step by step instructions.
Configure SSO for Your Identity Provider​
The process for setting up SSO in MaintainX varies depending on your identity provider (IdP). The the following articles have step-by-step configuration instructions for the IdPs MaintainX users use most often:
If you need more help setting up SSO with your IdP, contact MaintainX Support.
Test Your SSO Setup​
After you set up SSO for your IdP, you can test the configuration to make sure it works.
To test the SSO configuration:
- In the MaintainX Single Sign-On Configuration dialog, copy the Start URL to the clipboard.
- In a web browser, open a private browsing (Incognito) widow.
- Paste the Start URL into the address bar and follow the link.
- Log into MaintainX using your SSO credentials.
If your login attempt succeeds, the configuration works.
Set Up Routing Rules for Your Domains​
Routing rules automatically redirect users with email addresses from your company's domains to log in via SSO.
You can set up routing rules for as many domains as you need. However, you must have at least one verified email address for each domain set up already for the routing rule to work.
Use the Start URL to verify the first email address for a given domain.
To set up routing rules for your domains:
-
In the MaintainX Single Sign-On Configuration dialog, go to the SAML Configuration section.
-
In the Email Domains field, enter a commas-separated list of all the domains you want to redirect to your SSO login.
For example:
myfirstdomain.com, myseconddomain.net, mythirddomain.info
Set the Default Account Type for New SSO Users​
When a user logs in from your domain, and doesn't have a MaintainX account yet, an account is created automatically. You can set the account type that MaintainX assigns to new users by default. For more information about user account types and permissions, see User Types and Permissions
To set the default account type for new users:
- In the MaintainX Single Sign-On Configuration dialog, go to the SAML Configuration section.
- Set the Default Role to the account type you want to create by default.
Migrate Existing Users to SSO​
When you set up SSO for an existing organization, existing users don't switch to SSO authentication automatically. You have to update their accounts to use SSO.
For step-by-step instructions, see Migrate Existing MaintainX Users to SSO.
Enable SSO for Other Organizations​
After you set up SSO for one MaintainX organization, you can enable it for any other organizations your company has. When you enable SSO for another organization, MaintainX applies the same settings you configured when you first set up SSO.
For step-by-step instructions, see Enable SSO for Multiple Organizations.