This feature is only available for the price plan Enterprise.

This quick guide helps you integrate SSO for a secure and efficient login process using popular platforms like Azure and Google Workspace. Set up is simple, enhancing your Oneflow experience with ease.

Supported platforms

Currently, we support the following platforms for using SSO:

Enable SSO on your chosen platform

To enable SSO, follow these general steps depending on what platform you are using:

1. Download the Federation Metadata XML file from your identity provider (Azure, ADFS, etc.).
2. Gather the following fields from the file content:

• Step one - entityID.
  
  Example for Google: https://accounts.google.com/o/saml2?idpid=...
  Example for Azure:https://sts.windows.net/.../
  
  
• Step two - X509Certificate.
  It is a long string. If there is more than one certificate, choose the first one.
  
  Example: MIIDdDCCAlygA…
  Example: MIIC8DCCAdigA...
  
  
•  Step three - SingleSignOnService
  (Attribute: Location)
  
  Example for Google:"https://accounts.google.com/o/saml2/idp?idpid=..."
  Example for Azure: "https://login.microsoftonline.com/.../saml2"

Enable Single Sign-On in Oneflow

1. Log in to your Oneflow account.
2. Go to Marketplace.
3. Click on Single sign-on > Enable (if disabled).
4. Click on Edit.

Configure Single Sign-On (SSO)

1. Click on Edit 
2. Select an identity provider in the "Type" field.
3. Specify SSO service URL (the ‘SingleSignOnService (Attribute: Location)’ field from the ‘Federation Metadata XML’ file).
4. Specify Entity ID (the ‘entityID’ field from the ‘Federation Metadata XML’ file).
5. Specify X.509 certificate (the ‘X509Certificate’ field from the ‘Federation Metadata XML’ file).
6. Click Confirm in the top left corner.