Question regarding the bypass of SSO

Identity Security Cloud (ISC) ISC Discussion and Questions
1

Hello everyone,

I have a question regarding the SSO and the bypass possibilities. But first here is what I understood.

  • If we do not use SSO, to give ISC access to an identity, it must be invited into ISC.
  • If we use the SSO, the identity can log in to ISC without beeing invited.
  • If I enable the “Bypass Identity Provider” all identities will be able to bypass SSO, otherwise only identities with privileges in ISC will be able to bypass it.
    image

My question is: If an identity with privileges uses SSO but for an unknown reason decides to bypass the SSO, can he ask a reset password for its account even if he was not invited to ISC? And then logging to ISC without beeing invited?

Thank you in advance for your help,
Mathieu G

2

Hi @mathieug ,
Greetings of the Day!

Kindly note that they cant do any actions for their own account because that tab is in disable state I hope you are clear.

image
image278×102 1.83 KB

Thank You
Mahesh M

3

Hi Mahesh,
Thank you for your reply.

My question was about the login page where you can request a new password here:

image
image780×164 2.53 KB

image
image535×468 6.46 KB

Regards,
Mathieu G

4

I believe they may be able to start the reset process but not circumvent the invite process.

5

HI @mathieug,

I tried it and I was able to login using reset password without being invited to tenant.

So, yes you can login to SailPoint tenant using reset password though Bypass Identity Provider. although after enabling SSO, login URL will be different to use SailPoint login page.

Thanks.

1 Like
6

Hi @nikhleshsdg
Thank you for your test.

7

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.