What is SSO?
Single sign-on (SSO) is an authentication method used by companies to centrally manage employee access. Using an SSO identity provider, IT admins can control in one place who can access any services used by the company.
This is ideal for IT admins when onboarding new employees, as it provides them with instant access to multiple software services (avoiding the need to register new employees to these systems one by one). Offboarding employees is also simplified, as access from all systems can be revoked in one place.
Employees also benefit as they can access all the programs they need by using just one set of credentials.
How does TravelPerk support SSO?
TravelPerk supports configuring SSO with your identity provider using the OAuth 2.0 and SAML 2.0 protocols.
OAuth 2.0
OAuth 2.0 is a commonly used open standard for access delegation to server resources on behalf of a resource owner. It specifies a process for resource owners to authorize third-party access to their server resources, without sharing their credentials. It was designed to work with HTTP protocol. You can find more information here.
If your company is using Azure, G Suite, OneLogin, or Okta you can set up SSO without needing assistance. Learn how to do so in one of these articles:
- How can I set up SSO for Azure?
- How can I set up SSO for G Suite?
- How can I set up SSO for OneLogin?
- How can I set up SSO for Okta?
SAML 2.0
SAML 2.0 is an XML-based open-standard data format for exchanging authentication and authorization data between identity providers and service providers. You can read more here.
At the moment, SSO configuration using SAML 2.0 is only available via manual set-up by our team. Please contact your account manager, and we will reach out to you with the necessary steps to configure this.
