Single Sign-On (SSO) can be a big time saver for both users and administrators. By implementing one or multiple Google SSO flows in a portal, anyone in your network can click the SSO button on the portal's login page to quickly log in without the need for a separate Bynder username and password.
SSO also allows you to create new user accounts automatically (Just in Time provisioning - JIT), which takes this manual task away from portal administrators.
Caution
This article describes a self-service SSO configuration to set up one or multiple SSO flows. Contact your Customer Success Manager to confirm you portal has been enabled for Self Service SSO
-
Navigate to > Settings >Advanced Settings>Portal Settings
-
Click Login configuration on the left sidebar
-
Click New login method, then select Google SSO
-
Enter a name for the Google SSO flow to allow you to easily identify it and then click Save. The name will only be visible within the Login configuration section. You will be able to update the label of the SSO button on the login page that appears to users.
-
Name You can edit the name of the SSO flow. Make sure to click Apply.
Note
Status: Allows you to enable or disable this SSO flow. You won’t be able to enable it if you have not fully configured the flow.
Allows you to choose how you would like Bynder to handle your SSO users.
-
Just in time user provisioning Click to enable or disable just-in-time user provisioning. Enable if you would like Bynder to create users in the portal automatically when they login with SSO for the first time. If disabled, a user will first need to manually be created in Bynder by an admin before they can login for the first time using SSO.
Note
We do not currently support automated user deprovisioning at this time.
If you’ve reached the licensed user seat limit outlined in your agreement, the user will not be created. They will see an error message when attempting to log in and an error will be logged in Logs.
-
If enabled, you will need to select the Default user permission profile from the dropdown list. This will be the permission profile that users will automatically be added to upon login.
-
Update user upon login Click to enable or disable this feature and choose which attributes you would like to update upon every user login:
-
Update user attributes: Enable if you’d like to update user attributes like First Name, Last Name and email
-
Update user profile: Enable if you’d like to update user profiles to the default permission profile
-
Note
If you’ve reached the limit of licensed users for the permission profile, the user’s profile will not be updated.
Enter the email domains that can log into the Bynder DAM (i.e. if yourcompany.com is added, then users with yourcompany.com email addresses will be able to log in).
Note
Multiple domains can be set if needed.
Can I set up more than one SSO provider in my Bynder account?
Yes, you can set up more than one of the following SSO methods to allow your users more than one SSO option for logging into their portals. Learn more about enabling SSO with Bynder here.
I followed the above directions to set up SSO in my account, and my users are receiving an error when logging in.
Check out this article to view the error logs to resolve the issue.
Updated