Skip to main content
Single Sign On

Enabling SAML 2.0 based single sign on for all users in the organization

Updated over a week ago

Single sign-on allows users to log in to the Empuls account with organizational credentials to access all their corporate apps. More importantly, it grants admins the ability to add and revoke user access centrally using an existing identity management tool.

How SAML works?

SAML (Security Assertion Markup Language) is a standard protocol that provides identity providers a secure way to let a service provider, such as Empuls, know who a user is. It does this by sending Empuls a cryptographically signed XML document that asserts the user is who they say they are.

Once configured, users can authenticate with the following process:

  1. Enter the email address on the login page and click on PROCEED

  2. The user is redirected to your identity provider interface, i.e., the AD login page.

  3. The identity provider authenticates the user and redirects the user back to Empuls.

  4. The user is granted access to Empuls.

Supported Identity Providers

Here is the list of few well-known, AD FS supported identity provider systems that are compatible with SAML 2.0 protocol.

Note: Any Identity Provider system that supports SAML 2.0 standards can be integrated with Empuls for SSO.

How to set up SSO?

Navigate to Admin --> User Access Settings --> User Authentication

Learn how to set a default login method for all users in your organization here.

Did this answer your question?