Using single sign-on (SSO) allows a user to sign in to multiple websites using a single set of credentials (for example: email/username and password). With SSO enabled, a user could sign into one website, such as a corporate site, and then access any other SSO-linked website, such as Eventsforce, without having to log in again. Eventsforce currently supports SSO using SAML 2.0.
Important: Please note that SSO configuration should ONLY be done by a technical person who understands single sign-on and SAML 2.0, as technical expertise is required.
This article will cover the following:
What do I need to start?
Before setting up SSO with SAML 2.0, contact your Eventsforce account manager and get “Single sign-on (SAML 2.0)” added to your Eventsforce license.
Once added, you may need to update your “Administrator” user role or whichever role the person tasked to set up SSO will use and activate the “SAML Settings” role function. This will allow the user to access the necessary settings page in Eventsforce. View our “How to edit user roles” for further assistance.
You will also need the following information:
Single sign-on service URL
Base64 encoded SAML2 response signing certificate
Allowing single sign-on for admin portal
Once the necessary permissions have been given to the user, they can access the ‘SAML Settings’ page by taking the steps below:
Go to Settings > Security > SAML Settings
Select the checkbox to “Allow single sign-on for admin portal using SAML2” (if applicable)
Select whether to restrict login to SSO only (prevent normal login and require SSO)
Enter the “Single sign-on service URL”
Enter the “Base64 encoded SAML2 response signing certificate”
Click “Save”
Testing SSO Configuration
To test SSO for the admin portal:
Create/pick a user on the IdP for testing purposes (example: admin@someclient.com)
Create an Eventsforce user with the above email address, allowing basic access to Eventsforce
Visit the admin portal login page (example: https://www.eventsforce.net/ACCOUNTNAME/backend/home/login.htm)
On the login page, if SSO has been enabled for the admin portal, there should be a link to log in by SSO (usually, it says “SSO”, unless customized). Click the link.
You may be asked to sign on on the IdP. Provide the credentials for the above email address.
If successful, you should be able to see the Eventsforce admin portal.