Single Sign On (SSO)

Tier: Professional, Enterprise

Overview

Single sign-on (SSO) allows staff users to log into Aunt Bertha using credentials (username and password) from another system that they use. This allows for a seamless login experience for your users. We recommend this functionality for all customers.

Automatically provision your users the first time they log in using Single Sign On. Staff can use the same credentials to log into your Social Care Network, as they do to log in to your system. Pass your staff’s team role when they log in with Single Sign On so they are automatically added to their team with the right sharing permissions.

 

How it Works

Aunt Bertha uses SAML SSO to authenticate users and retrieve their information from a single source (the Identify Provider) provided by the Customer.

When Single Sign On is enabled on your platform, users will go to the site and be automatically redirected back to their corporate system for authentication. If needed, they will sign in to their main system using their credentials.

Once authenticated, users are redirected back to their site and automatically signed in to the platform using an account our system automatically creates the first time they attempt to log in using SSO.

Returning visitors are automatically authenticated/signed in to the White Label if their SAML security information is cached.

Aunt Bertha auto-creates users with the following attributes the first time they log in. This auto-creation is called “just-in-time provisioning”:

  • nameID
  • First name
  • Last name 
  • Email
  • Title
  • Department
  • Group ID (Role)*

*We recommend assigning a team-based role via the “group” attribute. This will automatically add the user to the correct team-based role and give them the correct sharing access. Additionally, Customers are better able to see their user adoption and performance in reporting as we show staff metrics by role.

Multiple SSO

Customers may have multiple SAML-based SSOs enabled on one site. In these cases, the SSO URL will provide a landing page with the various SSO options. From here, the User will need to choose which SSO to use to log in.

If you're interested in implementing Single Sign On for your site, please contact you Customer Success Manager.

 

Was this article helpful?
0 out of 0 found this helpful