Single Sign-On (SSO)
The Single Sign-On feature, also known as SSO, enhances security at scale by eliminating the need for user passwords. It enables centralized access control and efficient management of login credentials by using your company’s IdP via OAuth (Office 365, Okta, Azure, Active Directory, Google, Facebook, OneLogin, and more).
This feature is available on Enterprise plan
Find your custom subdomain #
To get started with configuring and utilizing SSO for authorization, the initial step is to locate your custom subdomain.
Check out this article for details on how and where to find your custom subdomain. It also provides detailed information on how to change Workspace subdomain.
Configure SSO #
Plaky supports one SSO identity provider (authentication type) :
- OAuth2 (Google, Azure, Okta, Facebook, Github, etc.)
Only Admins can see the Security page in Admin, configure SSO, and turn SSO on/off.
To set up Single Sign-On (SSO):
- Click on your Profile icon at the bottom left corner and open Admin
- Open Security section
- Click + icon in the top right corner to add SSO Configuration
- Select the authentication type
- Fill in the form, tick the checkbox at the bottom
- Click Save to complete the process
Data in the SSO configuration can always be edited or deleted. If deleted, the Workspace users will have to switch back to logging in by using email, Google or Apple.
Admins can always log in using the original email and password at https://mysubdomain.plaky.com/login-owner
When you create new Custom SSO configuration, auto-join option is enabled by default. This feature allows your teammates to join your Workspace automatically through custom SSO, eliminating the need for invitations. Edit your configuration to disable auto-join.
In case that the Workspace subdomain is changed after Single sign-on is configured, it is essential to make revisions to your SSO configuration. Specifically, you should update the Authorized redirect URI and verify the auth provider, to maintain functionality of your SSO system.