An Introduction to Single Sign On (SSO)

Sounding Board can enable Single Sign On (SSO) through Secure Assertion Markup Language (SAML) 2.0 for customers upon request. 

The IT team in a company is typically responsible for setting up and managing the company's SAML authentication system. Their role is to implement SSO for Sounding Board on their internal system(s). Sounding Board will need three pieces of information from the SAML setup to enable SSO: 

1. Exported certificate
2. Login URL/Entry Point
3. Email Domains
4. Optional: If you wish to disable password usage and enforce SSO, please include this in your request. Note that this action will impact all users with email addresses in the specified domain(s).

Once we have the above details, the Sounding Board team will let you know when the configuration has been completed. 

SSO Configuration for Multiple Domains

Sounding Board SSO can support multiple domains. Customers must provide us with a list of domains, and we will add those to their tenant. The customer IT team must also manage external/guest users in their IDP (Azure, Okta, etc.). If the email is configured to access Sounding Board through the Customer's Azure, and Sounding Board has entered the email domain into the tenant on our end, everything should work seamlessly.

SSO Implementation Tips

• Provide user details to your IT team: Customers should provide the names and email addresses of users to their internal IT team before adding them to the Sounding Board platform. In our experience, IT teams often create user/security groups and add relevant users to manage SSO access efficiently.
• Configure users for SSO access: IT teams should ensure these users are set up for SSO, enabling them to log into Sounding Board without a password once their accounts are created.

• Ensure user accounts exist in Sounding Board: Even if a user’s email is configured in the customer’s IDP and their domain is set up in our system, they won’t be able to log in unless their account has been created in the Sounding Board platform. To avoid login issues, ensure that all users are added to Sounding Board during onboarding.

• Continue onboarding as usual: Once configured for SSO, Admins should continue uploading users to the Sounding Board platform as part of their existing onboarding process.
• Account creation emails: Once users are uploaded, they’ll receive account creation emails. By entering their email address on the login page, they’ll see the Sign in with SSO option, allowing them to access the platform without a password.

Testing the SSO Connection

To test the SSO connection, users must be configured appropriately on the company side in the Identity Manage Group and must be active Sounding Board users. If you need assistance with the Sounding Board user setup, please contact our team for support. 

Additional Resources

For further details on set-up, see

• Enabling SAML single sign-on for Azure Active Directory
• Add the Sounding Board App to Okta

External Resources:

• Set up a SAML 2.0 provider with Azure AD
• Enable single sign-on for an enterprise application
• Add an Okta SAML application
• Create SAML app integrations