This article will guide you through enabling One Login configuration in your account.
SAML SSO gives users a centralized and secure way of controlling access to their organizations. When you join an organization that uses SAML SSO, you sign in through the organization's IdP, and your existing Survicate account is linked to an external identity that belongs to the organization.
How to enable One Login configuration?
Please go to Organization settings > SAML Authentication and toggle on Enable SAML authentication. Leave the tab open; you'll need the data from here in the next steps.
One Login - Identity Provider (IdP) setup
1. Once you've created a One Login account, add a new app: SAML Test Connector (IdP):
2. Customize your app:
3. In the Configuration tab, add ACS (Consumer) URL to ACS (Consumer) URL Validator and ACS (Consumer) URL fields.
You can find it under ACS (Consumer) URL in Survicate.
4. Go to the SSO page. You'll need Issuer URL, SAML 2.0 Endpoint (HTTP) and X.509 Certificate (visible under 'View details' blue link):
1. In the Survicate SAML Authentication tab, paste the Issuer URL to the Issuer field, SAML 2.0 Endpoint to Sign-on URL, and X.509 Certificate to Public certificate.
You can choose to require teammates to use their passwords to login to the Survicate account, or opt for a frictionless process, by switching on this option:
Thanks to this feature, by default, all new users, who use SAML won't be required to provide the password to log in to Survicate.
Enforce SAML Login for everyone in the organization
This option will become available after SAML is successfully configured and the Survicate account's first SAML login occurs. It lets you ensure that all teammates will be able to use SAML to log in.
Grant access to all workspaces when inviting users through SSO
If you choose to enable this option, and your Survicate organization has multiple workspaces, all new teammates you'll invite to join your account will automatically gain access to all the workspaces.
Now, with SAML enabled, to avoid using your login and password on the Survicate login page, you can log in directly from your SSO provider. Once you sign-in via SSO, and Passwordless authentication is enabled, you will not be asked for your Survicate password.