Single Sign-On (SSO)
The Single Sign-On (SSO) feature is an authentication capability that grants users access to multiple applications using only one set of sign-in credentials. SSO is typically used to provide a simplified and easier user experience when accessing a variety of web, on-premises, and cloud apps.
How does SSO work?
SSO works based upon a trust relationship set up between a Service Provider (Paydock) and an Identity Provider. A certification is exchanged between the Identity Provider and the Service Provider.
This certificate can be used to validate information sent from the identity provider to the Service Provider so that the Service provider is aware the information comes from a trusted source.
How to add Single Sign-On to Paydock?
- Log into your Paydock Production or Sandbox account;
- Open the Profile menu on the left and navigate to My Account;
- Click on the SSO setup section;
- Complete the IdP Metadata field to connect. IdP Metadata is data that carry information about your Identity Provider;
- Click Submit. You will then receive 3 links that are needed to contact the Provider. Let's take a look at each link in detail:
a. Assert link - this is the link that we provide to your Identity Provider for the correct direction of the assert response;
b. Meta data - here is information for a Service Provider about an Identity Provider;
c. Login direct link - this is a working link for logging into Paydock.
You can find provided links in the Active Setup Links section:
All possible SSO requests that have been created on your Paydock account can be found in the Recent Requests section.
Note: If you would like to encrypt data that will be transmitted to the Identity Provider side, please click on the Response Assertion Encrypted button. After that, a self-signed SSL certificate and a private key that are generated from your side, will need to be inserted.
Please keep in mind that you are also required to insert the certificate from the Identity Provider side to process the connection.