- 20 Sep 2023
- 2 Minutes to read
- DarkLight
Single Sign-On (SSO)
- Updated on 20 Sep 2023
- 2 Minutes to read
- DarkLight
What is SSO (Single sign-on)?
Single sign-on is an identification method that lets users to log in to multiple platforms and websites using a single set of credentials. In Nexudus, this means allowing customers and admins to log in using credentials that aren't the ones provided by Nexudus.
For example, letting your customers log in to the Members Portal and the Passport app using their Outlook email and password or letting admins log in to the Admin Panel using credentials from your active directory.
How SSO Integrations Work
Enabling a SSO integration lets your customers log in to the Members Portal and the Passport app using credentials from your own directory or a third-party like Google or Outlook if you're using Okta. It also lets your admins log in to the Admin Panel using these credentials instead of the ones assigned by Nexudus.
It lets all users, customers and admins alike, log in to their side of Nexudus using external credentials.
For example, you can let customers log in to the Members Portal using their Google account instead of their Nexudus credentials.
SSO integration settings let you define if you only want to allow log-ins through your SSO provider or if you'd like to let users choose to log in using either SSO or their Nexudus credentials.
You can also define what happens to users trying to log in without an admin or customer account in Nexudus. You choose to automatically create a customer account for them as they try to log in or simply deny access to the platforms.
Available SSO Integrations
Nexudus integrates with the following SSO options:
Azure AD, Azure Active Directory (B2C), LDAP, Auth0 and OpenID require you to have a directory already set up. If you'd like your users to log in using credentials from other providers, we recommend you pick Okta.
FAQ
Is SSO available on the Admin Panel?
Yes! Enabling any SSO integration in Nexudus automatically lets all its users connect using their directory or third-party provider credentials. This includes admins logging in to the Admin Panel and customers logging in to the Members Portal or the Passport app.
Can I use a different SSO integrations for the Members Portal and the Admin Panel?
The short answer is no, you should only enable one SSO integration at a time that applies to all sides of the Nexudus platform. You can work around this limitation and have different SSO integrations to work on each side of the platform, but this requires extensive customization and an infrastructure that allows you to self-host your Members Portal.