What is Single Sign-On
What is single sign-on and what are the benefits? With single sign-on, users need to authenticate only once with their organization's identity provider (IdP). They are then able to access Smart.pr. This sign-in method is similar to what you are probably already familiar with by signing in using Google or LinkedIn. The difference here is that you'll sign in using your organization's credentials instead of your Google or LinkedIn account.
An identity provider is a service that maintains identity information (user accounts) and provides authentication and authorization services. Common examples are Microsoft Entra ID, Auth0 by Okta, and AWS Cognito.
The benefit of SSO is that your organization is in complete control over the password policy, multi-factor methods, auditing, logging, etc. Smart.pr delegates all of this responsibility to your organization.
In short, the sign-in process is as follows:
Navigate to the Smart.pr app. You're not signed in and so you choose to sign in using SSO.
You provide your organization e-mail address and are then redirected to your organization's sign-in page.
On successful signing in, you will be automatically redirected to the Smart.pr app and ready to go.
SSO Onboarding
We're currently onboarding customers on a case-by-case basis. Let us know how we can best support your needs. If you're interested in setting up SSO for your organization, please contact your Smart.pr account manager.
In SSO land there are two well known standards: OpenID Connect (OIDC) and SAML. Many identity providers support both of these protocols. Smart.pr currently supports OIDC out of the box and can support SAML if OIDC is not an option.
We don't support user provisioning (SCIM) at the moment. If you require provisioning, please let us know.
We'll configure Smart.pr for your identity provider. We'll need to exchange some technical details.
We'll configure your organization to optionally use SSO. Here we can test to ensure SSO is fully functional while the normal username/password sign-in process is still available.
If everything checks out, we can switch to SSO required which disables the username/password sign-in method.
FAQ
How do I request SSO for my organization?
Please contact your account manager. SSO setup requires assistance from the Smart.pr team. We'll work with you directly to complete the required steps.
Which SSO protocols are supported?
We support OpenID Connect (OIDC). We can support SAML if OIDC is not an option for you. Please contact us to discuss your needs.