Configure SSO Connector

Enpass supports Single Sign-On (SSO) for Enpass Admin Console, making it easy to streamline access for your organization through secure, centralized authentication. By connecting your Identity Provider with Enpass, you can enable SSO login for admin users in your organization.

Prerequisites

Before configuring SSO Connector in the Enpass Admin Console, ensure you have completed the following prerequisites:

  • Enpass Console Super Admin role: Only users with Super Admin privileges can configure SSO.

  • SAML App: Ensure that your chosen IdP already has a SAML app ready for configuration. If not, please follow the steps provided in the relevant IdP links below:

Add SSO Connector

  1. Login to Enpass Admin Console.

  2. Navigate to Settings > SSO Connector.

  3. Click the Set Up button to open the SAML Configuration pop-up.

  4. Enter Configuration Details:

    • Provide a configuration name.

    • Select your preferred Identity Provider (IdP).

    • Click Continue.

      SSO Idp selector

  5. In the next screen, copy the SP Entity ID and SP Assertion Consumer Service URL (ACS URL) provided by Enpass, and paste them into the relevant fields in your IdP SAML application. Then, click Continue.

    Copy Entity Urls

  6. Complete the SAML configuration by either pasting the Metadata URL or uploading the metadata file (.xml) provided by your IdP SAML application. Click Add Configuration to finalize.

Once the configurations are added, the status will shown as Waiting for Test. The next step will be to test and enable SSO.

Test Your Configuration

After adding an SSO configuration, you’ll need to test and activate it to enable console admin users to log in using SSO. Here are the steps:

  1. Click the Test Configuration button.

    test sso config

  2. Click Start Test to open a new tab and initiate a test sign-in. The tab will close automatically once the test is complete.

    start sso config test

Activate and Enforce SSO

  1. Activate the Configuration

    • If the test succeeds, the Activate button will appear.

    • Click Activate to enable SSO as an available login option for the Admin Console.

    activate sso config

  2. Enforce SSO (Optional)

    • To make SSO the only login method, enable Enforce SSO.

    • Enforcing SSO will disable all other login methods until the enforcement is lifted.