Single Sign On FAQ
What does the flow look like from the Advocate point of view?
- Navigate to the AdvocateHub URL
- There are two scenarios:
- If they have previously logged in to your portal and the cookie is still present in the browser then they will be brought directly to the AdvocateHub.
- If they have not previously logged in and have no cookie they will be invited to enter their login credentials to your platform, upon successful entry of these, they will be brought to the AdvocateHub.
How do invites work with SSO?
We have a couple of options here:
- Create a group 'Employee'
- Set the targeting to make this group targeted to anybody who has '@influitive.com' in their email address
- Notify the new user of your program by email and inform them to navigate to the URL of the AdvocateHub in order to join up
- Once they access the URL then they will go through the sign up process and become an Advocate upon successful completion
- Once they become an Advocate then they will immediately be in the 'Employee' group
Things To Think About If Implementing SSO On An Active Hub
What can you do to prepare for this?
Can I have Employees access the AdvocateHub via SSO but Customers access using the traditional method?
Using SAML, no, anybody who has an account setup in the platform you are utilizing SSO in will be able to access the AdvocateHub. This is a case of all or nothing. If you want to use SSO then everybody has to login using it. So for example if you have employees who have accounts in your portal they can login through SSO, but if you have customers who don't have an account in your portal they have no way to login when SSO is enabled in your AdvocateHub