Setting up single sign-on (SSO)
Security Assertion Markup Language (SAML) is a standard of communication between Identity Providers (IDP) and Service Providers (SP) like Everhour.
Everhour allows you to use Single Sign-On with an IDP that supports SAML 2.0!
We also have dedicated Single Sign-On integrations available for the following platforms (the list may enlarge over time):
Enabling custom SAML
You must be an Owner or Admin to access the appropriate configuration in your Settings. Only available to users who are currently on a Team Monthly/Annually plan.
Important. We recommend that Admin first sets SAML to "Optional" and tries to log in with their SAML credentials. And only after a successful login to choose option "Required for all members".
First, tell the IDP solution how to communicate securely with Everhour:
- Select the
Optional
orRequired for all members
option to begin the setup process. - Ask your IT team to set up your organization's IDP solution. The exact steps will vary depending on which identity provider solution your organization uses.
- Provide your IT team with the following information from your Everhour account:
Entity ID
,Consumer URL
,Logout URL
Logout Url is optional, not many IDPs support it, but if you specify it, the logout on the IDP side will automatically triggers logout in Everhour.
Next, you need to tell Everhour how to communicate securely with your IDP solution.
- Once your IT team has configured the IDP, ask them to provide you with the following information:
Sign-in page URL
,X.509 certificate
Upon saving these fields, try to login using the new SSO settings. The first time log in process makes sure everything is working!