API Reference
Guides

Enable SSO

Suggest Edits

The Objective

  • Users from customer's company should be able to log in using their company credentials on Nanonets.

What is SSO* and how does it work?

SSO or Single Sign-on is an authentication method that enables users to securely authenticate with multiple applications and websites by using just one set of credentials. 

SSO works based upon a trust relationship set up between an application and an identity provider. This trust relationship is often based upon a certificate that is exchanged between the identity provider and the service provider. This certificate can be used to sign identity information that is being sent from the identity provider to the service provider so that the service provider knows it is coming from a trusted source. In SSO, this identity data takes the form of tokens which contain identifying bits of information about the user like a user’s email address or a username.

Process Overview

  • A user needs to enter the company email as an initial step.

  • They will then be redirected to the organisation's page where they will enter their password. Once the user is authenticated, they will be redirected back to Nanonets.

  • Account will be created on Nanonets with the company email.

Requirements from the customers

  • Identity Provider (IdP) XML metadata file
  • Payload structure in the callback after authentication, containing the user's email ID.

Nanonets SAML xml Files:

  • The files have been added as an attachment in this article.

SSO URL:

https://app.nanonets.com/#/signupsso

*SSO is available only as an enterprise feature and customers need to reach out to Sales / respective Customer Success Manager for enabling it.

Updated about 2 months ago