Using SSO to authenticate users in a sandbox environment

Edit online

You can use your single sign-on (SSO) identity provider to authenticate users who access your IBM® Envizi ESG Suite sandbox environment.

About this task

When a user logs in with their sandbox credentials, Envizi ESG Suite strips out the +sandbox from the username before authenticating the user with your SSO identity provider. After authentication, the user is directed to the sandbox environment instead of the primary reporting environment.
Note: This security feature enables sandbox users only to authenticate by using your SSO identity provider. The feature does not enable users to switch between the primary reporting environment and the sandbox environment in the same session.

Procedure

  1. To configure SSO in the sandbox environment, follow the steps for configuring SSO in the primary reporting environment.
    For more information, see Managing single sign-on.
  2. Create SSO users in the sandbox environment with the following username convention: username+sandbox@domain
    For example, if the user in your primary reporting environment is John.Smith@corp.com, in the sandbox environment configure the username as John.Smith+sandbox@corp.com.
    Note: Usernames are created automatically if your sandbox environment has been refreshed from your primary reporting environment.