What is the Single Sign-on?
According to Wikipedia, Single Sign-on (SSO) is an authentication process that allows a user to access multiple applications with one set of login credentials. SSO is a common procedure in enterprises.
At TeamMood, we provide a SSO integration using the SAML2 protocol, either through Azure AD, Okta or even your custom SAML2 portal.
How to get it
SSO is part of our Enterprise plan, please contact us at firstname.lastname@example.org to get more details.
Please contact the TeamMood support so that we'll send you the parameters.
Basically, we'll provide:
A Public Key certificate: in order to make sure that we got signed requests from you
The Single sign on URL: to notify TeamMood of authentication events.
Audience URI (SP Entity ID): URI Used to identify TeamMood as an application in Okta. It is always https://teammood.com.
Attribute statements: Define here a basic attribute statement 'email' which is sent back in SAML assertions. It's used to retrieve the email of the authenticated user in TeamMood.
You have to register a new app under Azure AD:
And add the parameters that we'll provide.
You may need to add also another setting:
serviceProviderEntityId: optionally, for Azure AD: the Application ID URI
TeamMood is available through the Okta Integration Network (OIN), more info at https://www.okta.com/integrations/teammood/
You can add TeamMood from the Catalog directly, by searching for TeamMood.
Login on your Okta admin panel
Search for the TeamMood application in the Okta App Catalog
Add the TeamMood app
Go to the “Sign On” tab, then click on “Edit” and add the ACS url provided by TeamMood
Send your "Identity Provider metadata" url to the TeamMood support team at email@example.com. The URL is located on the same screen, below the "View Setup Instructions".
Note: everything is also explained on Okta when you click on the "View Setup Instructions" on the "Sign On" tab.