Overview

Single Sign-On is an authentication protocol that allows you to sign in to multiple applications from one centralized Identity Provider (IdP). Offishall supports Single Sign-On (SSO) using any SAML-based as well as OAuth/OIDC-based identity providers.

We have setup guides for specific identity providers below:

Okta SSO

Google SSO (soon)

<aside> 💡 Azure Active Directory (AAD) doesn’t require any specific steps for configuring SSO. It is automatically enabled as long as you have user provisioning with AAD enabled. Azure Active Directory SSO is based on OAuth 2.0.

</aside>

Prerequisites

• You will need administrative access to your respective IDP
• You must be an admin in Offishall
• You must have the Michael plan with Offishall

Enable Single Sign-On

Step 1

Click on Admin then select users

Select your identity provider - we currently support Microsoft Active Directory and Okta.

Step 2

Offishall will automatically provide the values you need to add Offishall as a SAML 2.0 Service Provider to your Identity Provider: