Version 8.3
We want to enable SailPoint SSO login but not for all users, would like to test SSO login with some users and then want to make it available for all users.
Is there way to enable SAML based SSO login for SailPoint IIQ application for subset of users in an organization?
Hi @rsingh7,
I find this in documentation:
So you can, activated SSO and Pass-through at the same time.
PS like best practice, is better make this kind of test in a Dev environment
The easiest way to do this is with your Identity Provider which is federating users access to IIQ via SAML. For example in Azure, you can assign a group to an application to limit only users assigned that group to be able to SSO into IIQ.
Another option would be to implement some logic in the SAML correlation rule to only properly correlate to an identity when it’s someone who you would want to allow to log on, but this option is definitely less desirable.
Thanks for your reply!
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.
