FAQs | Federated SSO

First time SSO user in ETO? Seasoned SSO veteran? This article will compile a list of common questions related to Single Sign On in ETO.

Updated over a week ago

Looking for SSO setup instructions? Go here!

Q: Is SSO available in my country?

SSO is available in the United States, Canada, and Australia.

Q: Do standard login users get locked out once SSO is setup?

At this time, we do not lock users out of using the standard ETO login page, even when SSO is enabled. ETO users will be able to login through both the normal login page as well as through the organization's unique Single Sign On URL.

Please note: Your ETO password and your Single Sign On password do not sync and should be treated as separate credentials.

Q: Can we have a custom login URL?

At this time, we do not have the option to create a custom login URL.

Q: Can I configure a custom logout URL?

We do not support this feature at this time.

Q: Will adding a user to my identity provider also add the user to ETO?

No, you will have to also go into ETO and add the user account and user permissions.

Q: How does it work if I have two environments to login into?

Each environment needs to have their own configuration and login URL. Users will not be able to login to both environments using a single URL.

Q: What happens if I stay idle for a long time?

The system will log you out after the set number of minutes set by your organization and you will lose your work. Please ensure you save your work.

Q: Which SSO protocol(s) are supported?

Only SAML 2.0 is supported at the moment.

Q: Can we utilize tiles in our IDP?

We do not officially support IDP-initiated sessions, such as ones accessed through a tile in Azure. Our best practice remains utilizing the generated SSO URL from our SSO set-up article.

Did this answer your question?