Prerequisites for enabling single sign-on

Edit online

Before you begin the steps to enable your users to access IBM® Envizi ESG Suite by using single sign-on (SSO), review the prerequisites.

You can complete SSO configuration in IBM Envizi ESG Suite without enabling SSO.

  1. Engage your IT department early to obtain access to your organization’s identity provider (IdP) software, which is required for single sign-on configuration.
  2. Decide which group of users are required to use SSO to access Envizi ESG Suite. You might need to work with your IT department to include the users into a user group in your IdP application.
  3. Reserve a time to conduct single sign-on testing before rolling it out. Testing might include temporarily turning on and turning off SSO in Envizi ESG Suite. For more information about how to test the SSO configuration in Envizi ESG Suite, see Testing single sign-on configuration.
  4. Agree a date with your IT department when SSO will be turned on in Envizi ESG Suite and inform your users beforehand.
  5. Review the documentation about Setting up single sign-on and the steps required. Setting up SSO by using the SAML 2.0 protocol is a full self-service feature in Envizi ESG Suite.
  6. The SSO-related certificate often has an expiry date. Work with your IT department to track the expiry date of the certificate that is used for Envizi ESG Suite, and update the certificate in your IdP application and Envizi ESG Suite promptly to avoid disruptions in platform access.