What is a Single Sign-On?
In simple terms, Single Sign-On (SSO) is a way to synchronize your account management system (as the Identity Provider - IDP) with your Centercode implementation (as the Service Provider - SP). With SSO in place, a user will log into a single entry point and be able to access the full suite of applications connected to it, including your Centercode portal. Removing points of friction (like additional logins) increases participation and engagement by simplifying how users access your platform and gives you greater control over accounts accessing your exclusive system.
SSO works with Centercode by identifying and sharing a back-end constant (NameID) that both systems can use to bind user accounts together. When an account is created in your internal system, a back-end NameID is given to that account. The NameID assigned is unique for each user and impacts all systems connected to your organization’s IdP. All of a user’s identifiable information is bound to that ID.
How will having Single Sign On impact my users?
If you decide to utilize Single Sign On, be aware that your user Onboarding process will change slightly.
- SP (Service Provider) Initiated Onboarding occurs when a user accesses your login system through a Centercode Opportunity and the information for SSO verification is sent from us to you. If a user creates an account via this method, their account will be assigned to the destination teams for both the Onboarding Opportunity as well as the Team chosen in the SSO configuration.
- IdP (Identity Provider) Initiated Onboarding occurs when a user logs in directly through your IdP and accesses Centercode via an IdP dashboard. The new account will be assigned to the Team chosen in the SSO configuration, but won’t be associated with a Centercode Opportunity.
- When creating a new user account through SSO, the user’s Account Settings information is typically provided by the IdP and will be pre-filled. This information is owned and provided by your IdP. Therefore, it cannot be adjusted in Centercode. Account Setting information that isn’t provided can be filled in by the user on their first login.
What is SAML?
Security Assertion Markup Language (SAML) is one of multiple standard formats for exchanging authentication information between an Identity Provider (IdP - you) and a Service Provider (SP - us). Before moving forward you should verify that your IdP is compatible with SAML 2.0. If SAML is not used for the account management system within your organization, we can also provide a proprietary, custom Silent Authentication method.
SAML 2.0 provides the most effective authentication options for the majority of our customers, so you’ll want to verify your IdP is compatible with SAML 2.0 before moving forward. Download our SAML SSO Guide to learn more about configuring your SAML SSO here.
If you have any questions about Single Sign On, let us know! We’d be happy to address any questions you may have - reach out via in-site chat or email.