Single Sign-On (SSO)
The Single Sign-On (SSO) feature is an authentication capability that grants users access to multiple applications using only one set of sign-in credentials. SSO is typically used to provide a simplified and easier user experience when accessing a variety of web, on-premises, and cloud apps.
How does SSO work?
SSO works based upon a trust relationship set up between a Service Provider (Paydock) and an Identity Provider. A certification is exchanged between the Identity Provider and the Service Provider. This certificate can be used to validate information sent from the identity provider to the Service Provider so that the Service provider is aware the information comes from a trusted source.
Adding Single Sign-On to Paydock
- Log into your Paydock Production or Sandbox account;
- Open the Profile menu on the left and navigate to My Company;
- Click on the SSO setup section;
- Complete the IdP Metadata field to connect. IdP Metadata is data that carries information about your Identity Provider;
- Click Submit. You will then receive 3 links that are needed to contact the Provider. Let's take a look at each link in detail:
a. Assert link - this is the link that we provide to your Identity Provider for the correct direction of the assert response;
b. Meta data - here is information for a Service Provider about an Identity Provider;
c. Login direct link - this is a working link for logging into Paydock.
You can find the provided links in the Active Setup Links section:
All possible SSO requests that have been created in your Paydock account can be found in the Recent Requests section.
A more detailed overview of the Single Sign-On (SSO) feature can be found in this video:
Note: If you would like to encrypt data that will be transmitted to the Identity Provider side, please click on the Response Assertion Encrypted button.
Please keep in mind that SSL encryption must be enabled on the Identity Provider side to support this option at Paydock.