Configuring SSO Login

1 Minute to read

Print
Share
Dark

Light
PDF

This article is for our SAP, Oracle and Salesforce users who want to login with their organizational login credentials.

Salesforce users who want to login with their Salesforce credentials, click here

To allow users to seamlessly login to Panaya using their own organizational credentials, follow the instructions below.

Note
The Token URL must be accessible from outside of your organizational secured servers

We will require an OpenID Scope Claim (please configure your IDP with scope: OpenID+ Email), as in this article: https://openid.net/specs/openid-connect-core-1_0.html#ScopeClaims

Click on the Settings button to open up the Settings panel.
In the Security section, select View & Manage Single Sign On (Open ID Connect)
Fill in the details, and click Save.
Click on Check Configuration
On the right-hand side of the screen, use your organizational login credentials to log in.
This will verify the success of the configuration.
For Redirect URL on your IDP use - https://my.panaya.com/api/oauth/authenticate or https://emea.panaya.com/api/oauth/authenticate (depending on your specific Panaya site).

Here are some useful resources -
- Azure
- Okta
- Ping
  - “Refresh Token” grant type must be enabled.
If the configuration is successful, the following confirmation message would appear.
Click on Continue To Log In With SSO. This will verify the IDP configuration and will allow you to re-login to Panaya via SSO.
To roll out the configuration to all organizational users, click on Roll Out To All Users.
The Identify Provider Configuration will show as Active.
Users should now be able to log in via SSO login with their organizational credentials.
To deactivate SSO and roll back to Panaya login, click on deactivate SSO Configuration.

See also
SSO Common Issues

Known Limitation
When setting the PING IDP OAuth connection, the Tests e-sign cannot be used in Panaya. This is due to the implementation of OIDC.

What's Next

SSO Configuration - common issues