SSO setup

If you have an active connection and cannot see the new SSO setup page in the Manager, your configuration will continue to work as expected.
We do recommend switching over to our new, enhanced SSO solution. Please contact your Customer Success contact person to start the transition.

Prerequisites

1. No legacy SSO use: You must either be new to SSO at SoSafe or disconnect your existing SSO setup.

2. Supported enterprise identity provider: You must be using an identity provider supported by Auth0. All major identity providers, including Azure AD/Entra, Google Workspace, OIDC and SAML, are supported. For more details, refer to the Auth0 support pages.

Limitations

Currently, Auth0 SSO is only available for the SoSafe E-Learning platform. Support for the SoSafe manager will follow soon.

Setup instructions

1. Navigate to Settings / SSO. If SSO is missing, reach out to your Customer Success Manager so it can be enabled for your account.

   

2. Select + Add SSO connection. A new dialog window will open. Give your connection a name and select Create Connection.

   

3. You’re now given a link that will take you through the setup in a guided way. Most of the work now will happen on the identity provider side and all required information will be provided through this guide. If you have admin rights for your identity provider, you can proceed directly by selection Open setup. If you don’t have admin rights, you can select Copy link and send this URL to an admin. You can also send them a link to this article to give them more context.
   

   

This link is only valid for 1 hour and has a limited number of uses for better security. You can always generate a new one if necessary. To do so, select Regenerate setup link for the SSO connection entry on the Settings / SSO page in the Manager.

4. Follow the setup wizard. Note that at some points, you will be asked to note down certain bits of technical information that you will need again later on. We provide detailed instructions for Entra ID and Google Workspace. For custom SAML or OIDC connections, we still provide all required technical information but the specific steps in your identity provider are outside the scope of our wizard.

5. Before testing your connection at the end of the setup wizard, make sure you granted access either your test user (e.g. your own account) or all users you want to have access via SSO. Select Test Connection.
   

   

6. A new tab will open and you might be prompted to enter your company account credentials. If the test was successful, you can close the tab and you will get a preview of the user information that was submitted.

   

7. Select Enable Connection. Your SSO should now be active and working. Check to see if it shows as “✅ verified” on Settings / SSO in the Manager.

Note that it can take up to 10 minutes before all data has been synchronized.

Disabling and deleting Auth0 SSO

1. Go to Settings / SSO in the Manager and select Remove. You will be asked to confirm the deletion.

2. Recommended: In your identity provider, delete the application you created during the setup process.

Login options

There are two available options to control how users can log in after you have activated Auth0 SSO:

1. Pure SSO login: When this option is activated, all users can only log in via SSO if at least one SSO connection is verified. This is our recommendation.

2. Hybrid login: When this option is activated, users can log in with their email/password credentials or via an SSO connection.

To change this setting, select the text to the left of + Add SSO connection (see above). This text will also show the current setting. A new dialog window will open, allowing you to change this setting: