Inviting Users When Single Sign-on (SSO) is Enabled

When single sign-on (SSO) is enabled in Automox, the way that users can be invited has changed. Currently, users cannot be invited to an organization with SSO enabled. This is to prevent a password from being set for the new user. 

To invite users to an organization with SSO enabled, you must enable Provisioning within Automox's SSO settings. Today, users can only be provisioned when attempting login through IDP (Identity Provider) initiated SSO.

When provisioning users from IDP, the user is created in Automox as a Read-Only user. The global administrator or zone administrator can adjust the role for the newly-created users by going to Manage Zones And Users → Roles & Permissions

Here's how to get started:

  1. Load or create your SSO configuration in Automox on the Settings → Security page. 

    • If you are configuring SSO for the first time, follow the SAML-based Single Sign-on (SSO) instructions. 

    • If you already have SSO enabled, and have not enabled Provisioning, simply click the SAML Enable box again until the configuration screen appears.

  2. Select the checkbox for (Optional) Provision New Users.

  3. Assign users in your Identity Provider to the app or connector. 

    • As new users attempt login to Automox through your internal Identity dashboard or SSO app listing, they will be issued an Automox license with default permissions.

  4. Click Save Configuration.

Was this article helpful?
0 out of 0 found this helpful