What is single sign-on, and how can it help you as a user?

SSO is used to simplify the login between multiple platforms. This means that you as a user should only log in once using certain credentials, and you'll be able to log in to other applications as well with these credentials.

What is the advantage of SSO?

The advantage of single sign-on is that the admins manage the users themselves. For example, when someone stops working for you, you put that person on inactive in your single sign-on solution, and then they can no longer log in where you use single sign-on. Then you know that that person can no longer log in without immediately adjusting the users in all the software you use.

In addition, the users have fewer passwords if you can log in to different sites with the same single sign-on and you have control over whether certain extra parameters are taken into account (for example, only being able to log in from the office, etc.).

How do I get this set up for my firm?

You need to get your IT department to connect with the Silverfin SSO experts to get this set up. Please read the document attached at the bottom of the article to find out more.

We can set up:

  1. Azure AD
  2. Open ID connect

Just get in touch with your CSM with your requirements and we can get you set up!

How does it work once it's set up?

You can continue to add new users as before. Existing users can continue to log in both through SSO and with their existing username and password. If you would like to make sure that users only log in with SSO, please read the section below.

To log in with SSO, the user has to access Silverfin through a SSO subdomain, that is defined when you set up SSO. The URL will be in the format [subdomain].getsilverfin.com, and the subdomain can be found in the SSO connection section. 

Enforce SSO for all users

If you already configured SSO for your firm, you can enable the "Enforce SSO" option. This will require that users have to log in through SSO. Please be aware that when this feature is enabled, all user accounts, both internal and external, without SSO enabled will become unavailable. You’ll find the option in the SSO connections section under User configuration.

If a user tries to log in with their username and password after enabling “Enforce SSO access”, they will see a screen similar to this one, guiding them to the correct way to log in: