Skip to main content
Federated SSO | Select From Multiple User Pools
Updated over 5 months ago

Overview

On July 11, 2024, Enterprise Managers in ETO will be able to select from a list of User Pools within SSO.

User Pools connect ETO to your Identity Provider (IDP) via SAML. Each User Pool has its own Unique Resource Name (URN). Some IDPs do not allow re-use of a URN for multiple SAML apps. With the ability to select a User Pool in ETO, organizations using an IDP that has this restriction will be able to set up multiple ETO instances to use the same IDP to authenticate to ETO.

This means organizations with sandboxes can have users log in with the same IDP for Sandbox and Production. It will also allow large organizations that use the same IDP but separate ETO Enterprises to authenticate with the same IDP.

Need a refresher on Federated SSO overall? Check out the Federated SSO help article here.

Selecting a User Pool

Before proceeding: changing a User Pool will delete your SSO configurations. If you have already added SSO configurations, you will need to add them again and distribute the new login URL of those configurations to your users after following these steps.

  1. As an Enterprise Manager, login to your Production Enterprise and navigate to the Manage Federated SSO page.

  2. Under POOL PARAMETERS, take note of the SSO Pool that is currently in use.

    1. A close-up of a computer screen

Description automatically generated
  3. Next, login as an Enterprise Manager to the Enterprise you’re configuring SSO for (whether that’s your Sandbox or another ETO Production).

  4. Navigate to the Manage Federated SSO page.

  5. Under POOL PARAMETERS, click the pencil icon next to Select SSO Pool.

    1. A close-up of a white rectangular object

Description automatically generated
  6. Select a User Pool from the list.

    1. A screenshot of a computer

Description automatically generated

  7. Type “Confirm” and then Save. Note: this field is case sensitive.

    1. A screen shot of a computer

Description automatically generated

  8. Set up your configurations. See this help article if you need a refresher!

    1. Reminder: changing a User Pool deletes ALL configurations.

  9. Send your users the new URL to login to ETO.

Important Notes

  • Each ETO Enterprise configured will still have its own unique URL to login with via SSO. If you are configuring SSO with a Sandbox, you will need to distribute a specific URL to your users to login to that Sandbox.

  • Sandbox refreshes will not remove SSO configurations.

Did this answer your question?